Posted by Hank C. on Nov 23, 2021 in Blog, Web Security
How to tell if any site is absolutely unsafe to trust Another seemingly trustworthy site is in the news today. GoDaddy has been hacked. If you currently, or ever did host a website there, should you be worried? ABSOLUTELY! If they’d hired any responsible person with only thirty minutes of training in web security, and put that person in charge of running their server security operations, you probably wouldn’t have anything to worry about. Why? Because the first...
Read More »
Posted by Hank C. on May 23, 2018 in Blog, Joomla, Web Security
Joomla Security Update If you own a Joomla website, and you care about how Joomla security issues are affecting your web visitors and your own organization, you can’t afford to NOT READ this article! Owners of Joomla websites and many WordPress website owners got security update emails this morning. OK, nothing new about that, but.. But what a difference in those messages! Description Inadequate filtering of file and folder names lead to various XSS attack vectors in...
Read More »
Posted by Hank C. on Apr 11, 2018 in Blog, Web Security
If you read IT and web security news, then you know this is happening thousands of times each day, all over the world, but especially in the U.S. and Canada where our consumers are considered big, fat targets and our overall web security is notoriously weak. This article in ITworldCanada.com shows just another incident that few will hear about, but if you have a website, you really do need to pay attention to this one. Here’s why – This business created a...
Read More »
Posted by Hank C. on Mar 14, 2018 in Web Security
This is a wake-up call for anyone who still has a Joomla website. Despite the fact that Joomla.org is rating the severity of this latest vulnerability as “Low”, it is in fact an extremely severe issue. See Joomla.org announcement of this vulnerability here... See OWASP description of SQL Injection here.. SQL Injection allows hackers into your database. Like most CMS (content management systems), Joomla content is almost entirely in the database (exceptions are...
Read More »
Posted by Hank C. on Feb 27, 2018 in Web Security
Sounds like a cool idea – see what’s coming to your mailbox while you’re at work, or maybe on vacation. That’s what the U.S. Postal Service’s “Informed Delivery” lets you do. Just fire up an app on your phone and see what will be delivered to your mailbox today. Imagine sitting in front of the fireplace on a frigid February morning, absorbed by a fascinating article on CompuSolver.com. The only sounds are the...
Read More »
Posted by Hank C. on Jan 14, 2017 in Blog, Web Security
If you use a browser, you are susceptible to these two threats, but knowing one simple trick can save you from both and many more website scams. The Gmail phishing scam is the first scam we’ll cover.  You’ll click a link thinking it’s taking you to Gmail.  Then you get what looks like a legitimate Gmail login screen.  But guess again! How can you tell?  You look for the little green padlock, and as you can see in the 2nd image, it just ain’t there....
Read More »
Recent Comments