lol... OMG!

In honor of Data Privacy Day, the full ebook of lol...OMG!

In honor of Data Privacy Day, the full ebook of lol...OMG! What every student needs to know about online reputation management, digital citizenship and cyberbullying, by Matt Ivester (regularly $9.99) is being made available for FREE from January 27 through January 30! Limited Offer! Hurry and Grab Your free copy of lol... OMG! This educational offer is sponsored by Intel and the Associated Students of Stanford University. Parents, students, educators and libraries should take advantage of … [Read More...]

WPSecurityLock and Regina Smola: Help Stop SOPA+PIPA

WPSecurityLock Joins the SOPA Strike

WP Security Lock is joining the protest of the SOPA and PIPA Bills and will blackout this site on January 18, 2012. On Wednesday, all our website traffic be redirected to http://sopastrike.com/strike, striking against censorship. It's time to come together as a community and join us in this historic moment! What is the SOPA Strike? On January 18, 2012, the Internet is going on strike to stop the Web Censorship Bills in Congress! Sites are striking in all different ways. Check out Strike … [Read More...]

Pretty Link Pro

Pretty Link Plugin Vulnerability Fixed in 1.5.6

Pretty Link Plugin for WordPress has a new security update to fix a cross-site scripting vulnerability. Pretty Link Lite Version 1.5.6 and Pretty Link Pro Version 1.5.6 were released on January 6, 2012. And according to the plugin's Changelog, the vulnerability could have affected a very small number of users. I'm not exactly sure what they mean by "a very small number of users," but the plugin has been downloading 392,206 times. Last week the plugin was downloaded 10,497 times. Although I … [Read More...]

WordPress 3.3.1 Update

WordPress 3.3.1 XSS Vulnerability Patch and 15 Bugs Fixed

WordPress 3.3.1 has now been released and is ready for download! On January 3, 2012, the developers of WordPress released version 3.3.1 (security and maintenance release), which fixes 15 bugs/issues and also closes the zero-day cross-site scripting vulnerability that was found early this week. The Cross-Site Scripting XSS vulnerability in version 3.3 could only be reproduced/tested using an IP address (not a domain name) via Internet Explorer according to ethicalhack3r. The XSS vulnerability … [Read More...]

How to Secure WordPress

WordPress is one of the most popular and powerful Content Management Systems (CMS) available. Every day, thousands of new people are using WordPress, not just for their blogs, but also for entire websites. Recently, WordPress was awarded the Overall Best Open Source CMS Award for 2009.You can either get a free WordPress blog or self-host WordPress on your own domain name.To purchase a domain name, we highly recommend GoDaddy*. To self-host WordPress, you will need a hosting account. We … [Read More...]

WordPress Hacking, Virus, Malware Removal and Website Restoration

When your WordPress blog has been maliciously attacked by a hacker, you need to take immediate action! The clock is ticking. The longer your Wordpress website stays hacked, the worst the consequences! It can infect the computer of anyone who visits your site. It can get your site blacklisted from search engines like Google. You lose your readers' trust... and you lose money! Don't panic. We're here to help you with our WordPress Hacking, Virus, Malware Removal and Website Restoration … [Read More...]

Facebook Scam: Chat Warning - Reconfirm Your Information

Just received an email on January 22, 2012 from Carla McNeil about a new Facebook scam that she was hit with today. While chatting with a friend on Facebook, she received this information in her chat window:WARNING: Your account is reported to have violated the policies that are considered annoying or insulting Facebook users.system will disable your account within 24 hours if you do not do the reconfirmation. Please confirm your facebook account … [Read More...]

DreamHost One-Click WordPress Installer

DreamHost One-Click WordPress Installed Timthumb Vulnerability and Security Risks

In the past few months, we've fixed numerous hacked WordPress blogs on DreamHost with one thing in common: one-click installs with outdated Timthumb scripts. Users that install WordPress using the "One-Click Install" Deluxe from DreamHost are welcomed with 134 themes (5,536 files not including Twenty Ten and Twenty Eleven) and 9 plugins (624 files not including Akismet). Holy Crap that's alot of themes and files!!When you put your mouse over the ? it says "Includes a glorious selection of … [Read More...]

Log-in to cPanel Securely

WordPress Security Tip: Log-in to cPanel Securely

Help tighten security for your WordPress blog by always logging into your hosting cPanel securely. Why? Because logging in to your cPanel through https:// provides an encrypted communication and secure identification of your hosting provider. When you first sign up for a hosting account, you receive a "Welcome eMail" from your hosting provider. If your hosting provider offers a cPanel, there will be a link to log-in. Here's part of a sample "Welcome eMail" from HostGator:Welcome to the … [Read More...]

DreamHost Security Issue: Change Shell/FTP Passwords Now

DreamHost has issued a security warning to all customers as of January 20, 2012 at 9:25am Pacific Time.Last night we detected some unauthorized activity within one of our databases. While we don’t have evidence that customer passwords were taken at this time, we’re forcing a change out of caution. Please login to our web panel and change any passwords you may have with us. We’ll keep this post updated as we get more information.When logging into the DreamHost Web Panel, the … [Read More...]

Stop SOPA