During a routine site cleaning, the SiteLock Research Team found suspicious code in a WordPress plugin file.
Page 45 of 63
SiteLock SECCON Team recently detected suspicious code in a WordPress Social Media Tab. plugin file. In this article we will discuss the malicious plugin and its payload, and detail what steps should be taken to remove and avoid using malicious plugins.
Did you know that stores are likely to keep your name, credit card number, address, email address, and even date of birth stored on file for long periods of time? With information like this sitting idle, it often becomes an easy target for cyber criminals. This month, SiteLock is supporting Data Privacy Day on January 28th to create awareness around the importance of privacy and protecting personal information.
Security breaches are on the rise and this trend is not slowing. Over 750 breaches occurred during 2015 with more than 170 million records exposed. The number of breached data records in 2015 nearly doubled the records breached in 2014.
Bad actors have attacked websites since the beginning of the internet. They have many reasons for taking over websites — money, infamy, politics, curiosity — though nothing grabs attention more than the visual defacement of a site. Website defacement occurs when a bad actor gains access to the site files, and replaces the index or home page with their own page. We’ve seen many of these over the last year, but what are the real consequences for the sites that are defaced? We’ll discuss the effects of a defacement on a website, and the reasons why they happen. We will also outline what you should know about defacements and how to secure your site against them.
What Is A Website Defacement?
SiteLock is proud to announce that it has committed to being a Champion of Data Privacy Day (DPD) – an international effort held annually on January 28 to create awareness around the importance of privacy and protecting personal information. As a DPD Champion, SiteLock recognizes and supports the principle that organizations, businesses and government all share the responsibility of being conscientious of data privacy by taking part in respecting privacy, safeguarding data and enabling trust.
That’s right! We’re headed south for WordCamp Miami, February 20 & 21, 2016 at Florida International University. We’ll be there with lots of super swag and can’t wait to meet all the Miami WordPressers. Tickets on sale now! For more information, visit 2016.miami.wordcamp.org, @wordcampmiami and #wcmia.
With any web technology there comes a time to move on to the next level. Adobe Flash is notoriously insecure, resource intensive, and poorly supported on mobile devices. The process for phasing out Flash has been underway for some time, and now may be an advantageous time for developers and end users to move on from Adobe’s long-time media platform.
This week we’ll discuss:
- The reasons you may want to move on from Adobe Flash
- What alternatives exist and their advantages
- What you can do specifically as an end user and site owner
You may think your WordPress website doesn’t have anything worth being hacked for, but websites are compromised every day. And although security is rarely top-of-mind when you are working away on your WordPress blog, e-commerce site or client websites, the fact is, if your website isn’t secure, you have a 1-in-3 chance of being hacked at some point. Don’t believe it? Check out this mesmerizing attack map that shows hacking in real-time. Be aware, this map reveals only the tip of the iceberg—penetration attempts against a subset of “honeypot” traps. The actual number of attacks at any given moment is significantly greater.
As a business owner, you’re constantly thinking about how best to protect and propel your company. But there’s one component that you may have overlooked: website security. Security breaches are inevitable, yet cybersecurity is often neglected. We’ve rounded three simple steps to make sure you’re covered: