PHP 5 and 7.0 will soon reach end-of-life. This means that these versions will no longer receive updates of any kind, including fixes for security issues. To ensure the on-going compatibility and security of your WordPress sites, you will need to upgrade to PHP 7.2. … continues
We are thrilled to announce that the excellent Revisium Antivirus Scanner is now available to all customers on MWP2 servers.
Revisium AntiVirus Features
Revisium Antivirus is an intelligent malware detection tool with one-click automatic malware cleanup and blacklist status checking. Scans run automatically each night, and customers can review scan results and run additional scans on-demand directly in the Plesk Panel.
At WP NET, our customers website security is of the utmost importance to us. We employ various, overlapping malware and virus detection systems to provide the most robust protection to our customers.
Starting today, all WP NET Managed WordPress hosted sites will be scanned daily using the Google Safe Browsing API. This is in addition to our existing server-side malware scans and Sucuri SiteCheck external scans.
Our existing uptime monitoring system also performs additional Google SafeSearch and virus / malware scans on a rotating hourly schedule.
If a scan identifies any issues, WP NET support will contact the customer directly to discuss the best course of action to remedy the problem(s).
If you have any questions regarding our security and protections systems in place, please contact NET and we’ll be happy to help.
If you use WooCommerce, chances are you also use PayPal. Many PayPal users have begun receiving notification from PayPal regarding various security updates to their systems. Included in these updates are changes to the IPN (Instant Payment Notification) URLs. Many users are concerned about the impact this may have on their PayPal payments processing with WooCommerce.
If you’re interested in the technical details, you can read about it on the PayPal Knowledge site.
This is a concerning development, as a malicious user somehow gained access to the plugin’s source code on the WordPress plugin repository and added the malware. They then bumped the plugin’s version number and anyone who installed the update was unwittingly infected by the backdoor exploit. Ouch. … continues
There have been two critical security issues in recent days, which we wanted to bring to your attention.
Firstly, a serious vulnerability was discovered in the glibc library which is included in just about every Linux OS distribution. This was particularly concerning as 1) the vulnerability has existed since 2008(!) and 2) because the glibc library is so widespread, being used in Linux, smartphones, routers and all sorts of other devices. It could be sometime before some of these vulnerable devices are identified and patched. The bug is listed as CVE-2015-7547.
If you host with WP NET you can relax — we’ve already patched all our shared servers and Cloud Servers. … continues
It’s been another busy week for WordPress security — first a large number of very popular plugins were found to be vulnerable to XSS (Cross-site Scripting) attacks due to improper use of a couple of commonly used functions. Then, an important security update for the WordPress core, version 4.1.2 was released. Plugin and theme authors the world over are no doubt still busily checking their code and updates to various plugins and themes are still rolling out as I write this post (though most have already been fixed and updated a couple of days ago).
Many WordPress users are probably wondering … why are there so many security patches coming out for WordPress? Is WordPress a safe platform for my website? … continues
I’ve posted about this on our Announcements page, but thought I’d mention it here too — all WP NET servers have been patched and tested as safe from the FREAK Attack SSL/TLS bug. We actually installed patches and tested a good couple of weeks ago, so we’ve been secure for sometime now.
The FREAK Attack affects browsers as well, so you should test all the web browsers you use.
An article recently published on ZDNet suggests that much of WordPress’s security woes are due to lack of knowledge on the part of the administrator. Security — an area that is often overlooked or left out of the budget altogether — if left unchecked, can make your website an easy target.
Frequently, if a handful of straightforward, proven security hardening measures had been completed, many sites would not have fallen prey to their attackers. … continues
Our NZ-Based Managed WordPress Hosting has been operating for 8 months now, and already there have been many occasions when our added level of WordPress support and expertise has given our customers security and peace of mind.
WP NET does not just host your site and leave it at that — we constantly monitor the WordPress eco-sphere for important security updates, emerging threats and other risks — and when they are discovered we inform our customers and patch our systems as soon as possible. Most other hosts are not even aware of these issues and resolving them is usually left to you.
Many WordPress sites are still vulnerable to some of these threats weeks or even months later.
WP NET also monitors your website uptime and performs regular malware scans, and if we notice any performance issues with your site, we’ll get in touch and work with you to make improvements.
So, ask yourself … can you afford not to use Managed WordPress hosting?
Posts tagged with ‘security’