Page 47 of 63

WordCamp U.S. 2015

WordCamp U.S 2015 – We Came. We Saw. We Can’t Wait to Do it Again!

We spent months planning and anticipating our first WordCamp. And not just any WordCamp, but WordCamp U.S. 2015 in Philadelphia, PA—the country’s largest WordCamp of the year. We wanted to make a good first impression. What would WordPressers think of us? Would they like us? Really, really like us? Well, we are super excited to report that not only did WordCamp U.S. 2015 knock our socks off in size and overall happiness but WordPressers—a shout out to you, one of the greatest groups of people we’ve ever met!

Read More

retail data breaches

Top Retail Data Breaches of 2015

Waves of widespread, continuous cyber attacks hit the retail sector hard in 2014. Big names, including Home Depot and Michaels, suffered massive data breaches that affected millions of customers. Some experts predicted these hacks would slow in 2015 as new payment systems, such as Apple Pay and credit card chips were introduced. Unfortunately, this simply wasn’t true and this year proved to be no different. Cybercriminals continued their assault on retailers, stealing customer data, including names, addresses, social security numbers and even passport information. With the holiday shopping season in full swing, we took a look at this year to reflect on the retailers who were hit the hardest—and to offer up a few lessons learned.

Read More

malware email addresses

Looking at 1,000 Malware Email Addresses

Why Email Addresses?

When the SiteLock support teams clean malware from websites, it’s not unusual to find email addresses somewhere in the injected code.  So the research team decided to dig into some of those  malware email addresses to see what we could learn.

With the help of the SECCON (security concierge) and Expert Services teams, we gathered over 1,000 email addresses in short order. We hoped to see potential patterns such as highly used email providers and learn how the addresses were used, with the added benefit of providing a list of strings to detect malware.

Where Malware Email Addresses Can Be Found

The list of 1,012 email addresses consists mostly of phishing repositories, with some shell install and login notifications, ego addresses, and a few spoofed “From” addresses from phishing files. The full list of malware email addresses is found at WSTNPHX’s GitHub page.

Read More

SiteLock plugin for WP

WordPress Security Just Got Easier

Announcing the new SiteLock® Plugin for WordPress!

For the over one million SiteLock customers on WordPress, managing website security services has never been easier. Users can access their SiteLock Dashboard from within WordPress, allowing you to focus on what’s most important—your business, your passion, your word.

wpPluginDatasheetImg Half-01

Download today at wordpress.org/plugins/sitelock.

SiteLock Research Team Uncovers WordPress Plugin Vulnerability

The SiteLock Research Team will have many firsts as it develops. This week we’ll discuss the first reported and patched vulnerability the team found, a minor cross-site scripting vulnerability in Testimonial Slider.

The team has been working on putting together a new vulnerability research process.  During the creation of this process, we tested a not-so-randomly chosen WordPress plugin, Testimonial Slider.   Developed by SliderVilla.com, it displays customer testimonials in a responsive slider and has over 10,000 installs.  We chose Testimonial Slider for no other reason than it was a slider plugin after the recent Revolution Slider exploit.

What Does Testimonial Slider Do?

Testimonial Slider, developed by SliderVilla.com, displays customer testimonials in a responsive slider and has over 10,000 installs. We analyzed version 1.2.1 using SiteLock TrueCode and manual analysis.

Read More

WordPress plugin vulnerability

SiteLock Research Team Uncovers WordPress Plugin Vulnerability

The SiteLock Research Team will have many firsts as it develops. This week we’ll discuss the first reported and patched vulnerability the team found, a minor cross-site scripting vulnerability in Testimonial Slider.

The team has been working on putting together a new vulnerability research process.   During the creation of this process, we tested a not-so-randomly chosen WordPress plugin, Testimonial Slider. We chose Testimonial Slider for no other reason than it was a slider plugin, after the recent Revolution Slider exploit.

What Does Testimonial Slider Do?

Testimonial Slider, developed by SliderVilla.com, displays customer testimonials in a responsive slider and has over 10,000 installs. We analyzed version 1.2.1 using SiteLock TrueCode and manual analysis.

Read More

PCI compliance

Is Your WordPress Site PCI Compliant?

With holiday shopping in full swing, WordPress websites that accept credit cards are busier than ever. Lots of business is great. Not being PCI compliant is bad.

PCI compliance is required by all the major credit card companies and if your website is not PCI compliant, you risk penalties, lost revenue, the inability to accept credit card payments in the future and worst case, an increased risk of cardholder data exposure.

Read More

5 signs website hacked

5 Signs Your WordPress Website Has Been Hacked

Being the victim of a website hack isn’t always obvious. Here are five ways to tell if your WordPress website has fallen victim to a hacker, and they’re not what you might expect.

Read More

Cyber Monday Security

How to Safely Shop Online During Cyber Monday

It’s easy to get wrapped up in the holiday frenzy. With the allure of Cyber Monday markdowns, it’s easy to forget to use proper precautions when shopping online. Everyone expects that all the ecommerce sites are safe, but there is always the possibility of getting tricked into visiting a website managed by cybercriminals. Here are a couple things to be mindful of as you shop online this weekend.

Read More

4 steps protect WordPress

4 Easy Steps to Protect Your WordPress Site

Whether just taking the plunge into the WordPress wonderland to launch a personal blog or full-fledged ecommerce site, or you’ve been using WordPress for a while now, it was a good choice. With a mature code base, a plethora of plugins and themes, and a vibrant, helpful community, WordPress is the ideal platform to create a rich presence on the web.

For WordPress security needs–from the development workstation to the server hosting the site—there are simple steps site owners and developers can take to help ensure a site’s overall security.

Read More

Page 47 of 63

Powered by WordPress & Theme by Anders Norén