{"status":"ok","elements":"
\r\n
\r\n\t\t\t\t\t
\r\n \"Mastering<\/a> <\/div>\r\n \r\n\t\t
\r\n 0 Response<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n Mastering WordPress Security: A Comprehensive Guide to Safeguarding Your Website<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n

Listen to \u201cAn introduction to the HackRepair.com article: Mastering WordPress Security: A Comprehensive Guide to Safeguarding Your Website\u201d   In the wake of a good number of companies reporting data breaches this past year, it’s become abundantly clear that website security is a concern that should be at the forefront of everyone’s minds – WordPress bloggers included. In 2023, the online security sector witnessed a series of data breaches affecting both major corporations and significant WordPress-related vulnerabilities. Below is a compilation of a few of the more notable incidents: In January: T-Mobile experienced two data breaches, each affecting around 37 Read More<\/a><\/span><\/p>\n <\/div>\r\n \r\n <\/div>\r\n<\/div>

\r\n
\r\n\t\t\t\t\t
\r\n \"The<\/a> <\/div>\r\n \r\n\t\t
\r\n 0 Response<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n The Importance of Off-Site Backups: Protecting Your Website if Your Hosting Company is Hacked<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n

  Another reason to maintain your own “off-site” backups. What if your web hosting company is hacked?   Otherwise, you could be this guy, “Hosting firm says it lost all customer data after ransomware attack” “Unfortunately, the system and data restoration process isn’t going smoothly, and CloudNordic says many of its customers have lost data that appears to be irrecoverable…”   For those of you reading this, I’ve worked with hundreds of web hosts over the years, and I’m continually amazed by the potential tragedies I see nearly every day. This is especially true if you are hosted with one Read More<\/a><\/span><\/p>\n <\/div>\r\n \r\n <\/div>\r\n<\/div>

\r\n
\r\n\t\t\t\t\t
\r\n \"Data<\/a> <\/div>\r\n \r\n\t\t
\r\n 0 Response<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n Data Breaches in 2023: Lessons for WordPress Bloggers<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n

[This original article has been superseded by my more recent article, “Mastering WordPress Security: A Comprehensive Guide to Safeguarding Your Website“] Hello, WordPress community! In the wake of good number of companies reporting data breaches this past year it’s become abundantly clear that cybersecurity is a concern that should be at the forefront of everyone’s minds – WordPress bloggers included.   Some of the data breaches reported in the first half of 2023 In June 2023, a file transfer tool called MOVEit was hacked, affecting companies like Zellis, British Airways, BBC, and Nova Scotia. The Russian ransomware group Clop claimed Read More<\/a><\/span><\/p>\n <\/div>\r\n \r\n <\/div>\r\n<\/div>

\r\n
\r\n\t\t\t\t\t
\r\n \"WordPress<\/a> <\/div>\r\n \r\n\t\t
\r\n 3 Responses<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n WordPress 5.5 Auto-updates Are Coming. To Auto-update or Not Auto-update? That Is the Question.<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n

If you haven’t heard, there’s a big update for WordPress coming soon. The WordPress 5.5 update will include a new feature called “Auto-updates for plugins and themes.”   How does this auto-updates for plugins and themes option in WordPress affect you? In two words, it doesn’t. The Auto-updates for plugins and themes setting in WordPress 5.5 is disabled by default. So there is no risk that you’ll update to WordPress 5.5 only to find your themes auto-updating on their own the very next day. That would be a bad thing. Now don’t get me wrong. I’m not against the auto-updating Read More<\/a><\/span><\/p>\n <\/div>\r\n \r\n <\/div>\r\n<\/div>

\r\n
\r\n\t\t\t\t\t
\r\n \"Top<\/a> <\/div>\r\n \r\n\t\t
\r\n 1 Response<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n Top Web Hosting Company’s Security Failures in 2019<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n

Not meaning to further freak you folks out, but here’s an interesting article showing how hackers have hacked accounts at Bluehost, Dreamhost, HostGator, and iPage, potentially exposing millions of websites to compromise. It would seem that these service providers have\/had quite a few vulnerabilities, potentially exposing millions of websites to compromise. And the fun part. There are even video demonstrations you can watch on Youtube “now” which will show you how. I suppose the bottom line here is that if you had your WordPress sites hacked at Bluehost, HostGator or iPage it may have been no fault of your own… Read More<\/a><\/span><\/p>\n <\/div>\r\n \r\n <\/div>\r\n<\/div>

\r\n
\r\n\t\t\t\t\t
\r\n \"What<\/a> <\/div>\r\n \r\n\t\t
\r\n 1 Response<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n What can you say when as many as 90 million Facebook accounts may have been hacked?<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n

“Hmm…” \u00a0 “On the afternoon of Tuesday, September 25, our engineering team discovered a security issue affecting almost 50 million accounts. We\u2019re taking this incredibly seriously and wanted to let everyone know what\u2019s happened and the immediate action we\u2019ve taken to protect people\u2019s security.” \u00a0 https:\/\/newsroom.fb.com\/news\/2018\/09\/security-update\/ \u00a0 +++ Why should I care? \u00a0 The hackers responsible for this attack took control of users\u2019 access tokens. And from this, the hackers responsible for this attack could easily take full control of not only the accounts of people on Facebook itself but also use that to log into other sites and services Read More<\/a><\/span><\/p>\n <\/div>\r\n \r\n <\/div>\r\n<\/div>

\r\n
\r\n\t\t\t\t\t
\r\n \"Massive<\/a> <\/div>\r\n \r\n\t\t
\r\n 2 Responses<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n Massive denial of service campaigns going on – “You’ve been Memcrashed!”<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n

There is some massive denial of service campaigns going on this week, and potentially even bigger ones on the horizon due to there being a large number of misconfigured memcached servers (the majority being hosted through Digital Ocean and other cloud providers). A quote fromBy\u00a0Steven J. Vaughan-Nichols, “The result is an attack that can take down pretty much any server on the planet. With over 91,000 open memcached servers, according to a quick Shodan search, the potential for massive DDoS attacks has never been higher.” This article below covers the gist of the situation in case you are curious. https:\/\/www.bleepingcomputer.com\/news\/security\/memcached-servers-can-be-abused-for-insanely-massive-ddos-attacks\/ Read More<\/a><\/span><\/p>\n <\/div>\r\n \r\n <\/div>\r\n<\/div>

\r\n
\r\n\t\t\t\t\t
\r\n \"HackRepair<\/a> <\/div>\r\n \r\n\t\t
\r\n 0 Response<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n HackRepair News – WordPress 3.9 update<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n

Just a quick note regarding the WordPress 3.9, named\u00a0\u201cSmith\u201d in honor of jazz organist\u00a0Jimmy Smith. The\u00a0big changes:   The visual editor has finally been\u00a0upgraded! The updated visual editor has improved speed, accessibility, and mobile support. You can paste into the visual editor from your word processor without wasting time to clean up messy styling.     You may now edit images more easily. With quicker access to crop and rotation tools, it\u2019s now much easier to edit your images while editing posts.\u00a0You can also scale images directly in the editor to find just the right fit. Live widget and header Read More<\/a><\/span><\/p>\n <\/div>\r\n \r\n <\/div>\r\n<\/div>

\r\n
\r\n\t\t\t\t\t
\r\n \"HackRepair<\/a> <\/div>\r\n \r\n\t\t
\r\n 0 Response<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n HackRepair News \u2013 “Heartbleed” + OpenSSL + Hackers = Server Patching Mania<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n

Just a quick note regarding the OpenSSL vulnerability, also known as “Heartbleed.” An excerpt from the Heartbleed bug\u00a0summary , “Bugs in the OpenSSL’s implementation of the TLS\/DTLS (transport layer security protocols) heartbeat extension (RFC6520). When it is exploited it leads to the leak of memory contents from the server to the client and from the client to the server.”   Without going into great detail, the Heartbleed bug has been in the wild since early 2012. This past week the bug was officially discovered and\u00a0patched by the global security community. It is\u00a0plausible that someone may have maliciously used this bug Read More<\/a><\/span><\/p>\n <\/div>\r\n \r\n <\/div>\r\n<\/div>

\r\n
\r\n\t\t\t\t\t
\r\n \"HackRepair<\/a> <\/div>\r\n \r\n\t\t
\r\n 0 Response<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n HackRepair News – WordPress 3.8 update<\/a>\r\n <\/div>\r\n \r\n\t\t
\r\n

Just a quick note regarding the WordPress 3.8 release.   You will see some big changes: Dashboard completely overhauled and more responsive. You may change the colors via:\u00a0Users -> Your Profile. Other color schemes may be set up using this plugin,\u00a0Admin Color Schemes New theme is greatly changed, with a more magazine like look and feel. Widget management has been improved.   A number of significant Jetpack updates are included in the 3.8 release as well. One notable update is called Omnisearch, a new global search feature that searches everything WordPress (within your site and outside as well). To use\u00a0Omnisearch Read More<\/a><\/span><\/p>\n <\/div>\r\n \r\n <\/div>\r\n<\/div>","max_pages":1}