Page 46 of 62

How To Distinguish Promotional Emails from Phishing Scams

Your inbox is exploding with holiday promotional emails by now. It is likely that your favorite store is offering 25% off your entire purchase, and all you have to do is “redeem now.” But before you click on that enticing link, consider who the email is actually coming from. Phishing emails are well-crafted emails that trick the user into clicking on links or attachments that collect personal and financial information or contain malware. While deals are great, think before you click, especially during the holiday season.

Read More

SiteLock Website Security

Get to Know the Cybercriminal Hacking Your Website

The holiday season has begun and consumers are ready to shop. Retailers are stocking up on inventory, staffing for long hours and preparing for a busy quarter. As you go through your checklist to make sure your company is ready for the holidays, it’s crucial to double check your website’s security to ensure your business remains safe from cybercriminals.

Read More

WordCamp U.S. 2015

WordCamp U.S 2015 – We Came. We Saw. We Can’t Wait to Do it Again!

We spent months planning and anticipating our first WordCamp. And not just any WordCamp, but WordCamp U.S. 2015 in Philadelphia, PA—the country’s largest WordCamp of the year. We wanted to make a good first impression. What would WordPressers think of us? Would they like us? Really, really like us? Well, we are super excited to report that not only did WordCamp U.S. 2015 knock our socks off in size and overall happiness but WordPressers—a shout out to you, one of the greatest groups of people we’ve ever met!

Read More

retail data breaches

Top Retail Data Breaches of 2015

Waves of widespread, continuous cyber attacks hit the retail sector hard in 2014. Big names, including Home Depot and Michaels, suffered massive data breaches that affected millions of customers. Some experts predicted these hacks would slow in 2015 as new payment systems, such as Apple Pay and credit card chips were introduced. Unfortunately, this simply wasn’t true and this year proved to be no different. Cybercriminals continued their assault on retailers, stealing customer data, including names, addresses, social security numbers and even passport information. With the holiday shopping season in full swing, we took a look at this year to reflect on the retailers who were hit the hardest—and to offer up a few lessons learned.

Read More

malware email addresses

Looking at 1,000 Malware Email Addresses

Why Email Addresses?

When the SiteLock support teams clean malware from websites, it’s not unusual to find email addresses somewhere in the injected code.  So the research team decided to dig into some of those  malware email addresses to see what we could learn.

With the help of the SECCON (security concierge) and Expert Services teams, we gathered over 1,000 email addresses in short order. We hoped to see potential patterns such as highly used email providers and learn how the addresses were used, with the added benefit of providing a list of strings to detect malware.

Where Malware Email Addresses Can Be Found

The list of 1,012 email addresses consists mostly of phishing repositories, with some shell install and login notifications, ego addresses, and a few spoofed “From” addresses from phishing files. The full list of malware email addresses is found at WSTNPHX’s GitHub page.

Read More

SiteLock plugin for WP

WordPress Security Just Got Easier

Announcing the new SiteLock® Plugin for WordPress!

For the over one million SiteLock customers on WordPress, managing website security services has never been easier. Users can access their SiteLock Dashboard from within WordPress, allowing you to focus on what’s most important—your business, your passion, your word.

wpPluginDatasheetImg Half-01

Download today at wordpress.org/plugins/sitelock.

SiteLock Research Team Uncovers WordPress Plugin Vulnerability

The SiteLock Research Team will have many firsts as it develops. This week we’ll discuss the first reported and patched vulnerability the team found, a minor cross-site scripting vulnerability in Testimonial Slider.

The team has been working on putting together a new vulnerability research process.  During the creation of this process, we tested a not-so-randomly chosen WordPress plugin, Testimonial Slider.   Developed by SliderVilla.com, it displays customer testimonials in a responsive slider and has over 10,000 installs.  We chose Testimonial Slider for no other reason than it was a slider plugin after the recent Revolution Slider exploit.

What Does Testimonial Slider Do?

Testimonial Slider, developed by SliderVilla.com, displays customer testimonials in a responsive slider and has over 10,000 installs. We analyzed version 1.2.1 using SiteLock TrueCode and manual analysis.

Read More

WordPress plugin vulnerability

SiteLock Research Team Uncovers WordPress Plugin Vulnerability

The SiteLock Research Team will have many firsts as it develops. This week we’ll discuss the first reported and patched vulnerability the team found, a minor cross-site scripting vulnerability in Testimonial Slider.

The team has been working on putting together a new vulnerability research process.   During the creation of this process, we tested a not-so-randomly chosen WordPress plugin, Testimonial Slider. We chose Testimonial Slider for no other reason than it was a slider plugin, after the recent Revolution Slider exploit.

What Does Testimonial Slider Do?

Testimonial Slider, developed by SliderVilla.com, displays customer testimonials in a responsive slider and has over 10,000 installs. We analyzed version 1.2.1 using SiteLock TrueCode and manual analysis.

Read More

PCI compliance

Is Your WordPress Site PCI Compliant?

With holiday shopping in full swing, WordPress websites that accept credit cards are busier than ever. Lots of business is great. Not being PCI compliant is bad.

PCI compliance is required by all the major credit card companies and if your website is not PCI compliant, you risk penalties, lost revenue, the inability to accept credit card payments in the future and worst case, an increased risk of cardholder data exposure.

Read More

5 signs website hacked

5 Signs Your WordPress Website Has Been Hacked

Being the victim of a website hack isn’t always obvious. Here are five ways to tell if your WordPress website has fallen victim to a hacker, and they’re not what you might expect.

Read More

Page 46 of 62

Powered by WordPress & Theme by Anders Norén