WordPress 5.3.1 is now available! This security and maintenance release features 46 fixes and enhancements. Plus, it adds a number of security fixes—see the list below. WordPress 5.3.1 is a short-cycle maintenance release. The next major release will be version 5.4. You can download WordPress 5.3.1 by clicking the button at the top of this page, […]
Posts Tagged security
856 results.
WordPress 5.2.4 Update
Nov19
Late-breaking news on the 5.2.4 short-cycle security release that landed October 14. When we released the news post, I inadvertently missed giving props to Simon Scannell of RIPS Technologies for finding and disclosing an issue where path traversal can lead to remote code execution. Simon has done a great deal of work on the WordPress […]
WordPress 5.2.4 is now available! This security release fixes 6 security issues. WordPress versions 5.2.3 and earlier are affected by these bugs, which are fixed in version 5.2.4. Updated versions of WordPress 5.1 and earlier are also available for any users who have not yet updated to 5.2. Security Updates Props to Evan Ricafort for finding an […]
WordPress 5.2.3 is now available! This security and maintenance release features 29 fixes and enhancements. Plus, it adds a number of security fixes—see the list below. These bugs affect WordPress versions 5.2.2 and earlier; version 5.2.3 fixes them, so you’ll want to upgrade. If you haven’t yet updated to 5.2, there are also updated versions […]
Uniqlo’s website transmitted customers’ credit card details to fraudsters for more than a week in May this year, following the addition of e-commerce skimming code. The injected JavaScript code was designed to silently ‘skim’ the completed checkout form and send a copy of the customer’s details to the fraudsters. Thousands more sites have also been […]
Comment
Netcraft has updated its browser extension to add protection against malicious JavaScript, including shopping site skimmers and web miners. Shopping site skimmers are malicious JavaScript programs that steal your payment card information when you checkout on a compromised online store, and send it back to a fraudster to use later. These attacks have affected a […]
The Netcraft Anti-Phishing Extension is now available for Microsoft Edge. The Netcraft Anti-Phishing Extension provides phishing and XSS protection as well as informing you about the websites you visit. It was first made available for Internet Explorer in December 2004, followed by Firefox in 2005, Chrome in 2012 and Opera in 2013. Microsoft Edge is […]
The post Acronis and ZNetLive join forces to offer new security solution appeared first on Plesk.
Read this article in English La bijouterie en ligne française CLEOR, active dans 136 bijouteries, a été infectée d’un skimmer JavaScript. Le code malveillant injecté est conçu pour envoyer les données bancaires aux criminels sur le formulaire de paiement en ligne légitime de Cleor. Skimmers sur les boutiques en ligne Cette attaque compte de nombreuses […]
The post Cloudflare Releases New Warp VPN appeared first on Plesk.
Netcraft has found that Halifax has been left vulnerable to convincing impersonation attacks for five years. The operator of a website promoting Spanish hotels is able to send and receive emails on the official Halifax online banking domain, and get legitimate security certificates issued for the same domain.
The post Your Automatic Server Update to Plesk 17.8 appeared first on Plesk.
“Cybersecurity is changing; We need new protection strategies” – Say CloudLinux (Imunify360)
Apr08
on April 8, 2019
at 10:31 am
Posted In: antivirus, backup, CloudLinux, firewall, hacking, Imunify360, Plesk, Releases, security, Security alerts
The post “Cybersecurity is changing; We need new protection strategies” – Say CloudLinux (Imunify360) appeared first on Plesk.
An extremely convincing phishing attack that impersonates a multi-game skin trade bot appears to be using a fake Extended Validation TLS certificate to steal Steam accounts. The ongoing phishing attack impersonates TradeIt.gg, which facilitates the trading of skins, weapons and other in-game commodities within popular games like CS:GO, TF2 and DOTA. When a victim attempts […]
Dozens more U.S. government websites have become inaccessible since last week, when Netcraft highlighted the impact of security certificates expiring during the federal shutdown. As of today, more than 130 TLS certificates used by U.S. government websites have expired without being renewed. Some of these sites are now completely inaccessible in modern browsers due to […]
Dozens of U.S. government websites have been rendered either insecure or inaccessible during the ongoing U.S. federal shutdown. These sites include sensitive government payment portals and remote access services, affecting the likes of NASA, the U.S. Department of Justice, and the Court of Appeals. With around 400,000 federal employees currently furloughed, more than 80 TLS […]
WordPress 5.0.1 is now available. This is a security release for all versions since WordPress 3.7. We strongly encourage you to update your sites immediately. Plugin authors are encouraged to read the 5.0.1 developer notes for information on backwards-compatibility. WordPress versions 5.0 and earlier are affected by the following bugs, which are fixed in version […]
What can go wrong without the best web hosting platform? [Infographic]
Dec11
on December 11, 2018
at 7:00 am
The post What can go wrong without the best web hosting platform? [Infographic] appeared first on Plesk.
Valentin Vesa’s charity website was constantly attacked by hackers, despite all his efforts. Until Sucuri stepped in. Carole Olinger tells his story, as told by Val himself at WCSEA.
The post Plesk partner Sucuri saves Val from hacking ordeal #WCSEA appeared first on Plesk.
Lukas Hertig, SVP Biz Dev, talks Plesk, Digicert, security and market changes [Video]
Aug21
on August 21, 2018
at 7:30 am
Posted In: Business and industry, DDoS, digicert, market changes, People Articles, Plesk, Releases, security, SSL certificates
Find out what attracted customers and partners like DigiCert to Plesk, why we’re big on security, and how we responded to market changes along the years.
The post Lukas Hertig, SVP Biz Dev, talks Plesk, Digicert, security and market changes [Video] appeared first on Plesk.
The post How to Protect Your Websites with Plesk Security Extensions appeared first on Plesk.
Increase hosting revenue by offering complementary security services
Jul13
on July 13, 2018
at 7:24 am
The post Increase hosting revenue by offering complementary security services appeared first on Plesk.
Top Hacking Groups impacting Cybersecurity today
Jul03
on July 3, 2018
at 6:30 am
Posted In: anonymous, Business and industry, comment crew, cybersecurity, fancy bear, hacking groups, lazarus, Plesk, Releases, security, security check
Summer starts with burning web hosting news. Because we’re hearing about acquisitions, expansions, next-gen solutions and new creations.
The post Top Hacking Groups impacting Cybersecurity today appeared first on Plesk.
The post Best Plesk Takeaways from my first WCEU – Plesk Stories appeared first on Plesk.
The post New Plesk Extensions on the Loose: May Edition appeared first on Plesk.
Greg Zemslov, Guest Author from our Plesk partner Revisium talks about the websites threats that we don’t see, like site malware, and how to get rid of it.
The post Hidden Website Threats: How to deal with Site Malware appeared first on Plesk.
Security holes in Brazilian government websites are still rife, with no fewer than eight different gov.br sites being compromised within the past week to host phishing attacks and hacking scripts. The situation does not seem to have improved much since two years ago, when we noticed a similar spate of phishing sites and malware hosted […]
WordPress 4.9.2 is now available. This is a security and maintenance release for all versions since WordPress 3.7. We strongly encourage you to update your sites immediately. An XSS vulnerability was discovered in the Flash fallback files in MediaElement, a library that is included with WordPress. Because the Flash files are no longer needed for […]