More Bad News for Joomla

Posted by on May 23, 2018 in Blog, Joomla, Web Security

More Bad News for Joomla

Joomla Security Update If you own a Joomla website, and you care about how Joomla security issues are affecting your web visitors and your own organization, you can’t afford to NOT READ this article! Owners of Joomla websites and many WordPress website owners got security update emails this morning. OK, nothing new about that, but.. But what a difference in those messages! Description Inadequate filtering of file and folder names lead to various XSS attack vectors in...

Read More »

Is YOUR Website Vulnerable?

Posted by on Apr 11, 2018 in Blog, Web Security

Is YOUR Website Vulnerable?

If you read IT and web security news, then you know this is happening thousands of times each day, all over the world, but especially in the U.S. and Canada where our consumers are considered big, fat targets and our overall web security is notoriously weak. This article in ITworldCanada.com shows just another incident that few will hear about, but if you have a website, you really do need to pay attention to this one. Here’s why – This business created a...

Read More »

Joomla Is Dead!

Posted by on Mar 14, 2018 in Web Security

Joomla Is Dead!

This is a wake-up call for anyone who still has a Joomla website. Despite the fact that Joomla.org is rating the severity of this latest vulnerability as “Low”, it is in fact an extremely severe issue. See Joomla.org announcement of this vulnerability here... See OWASP description of SQL Injection here.. SQL Injection allows hackers into your database. Like most CMS (content management systems), Joomla content is almost entirely in the database (exceptions are...

Read More »

U.S.P.S. Informed Delivery Vulnerable

Posted by on Feb 27, 2018 in Web Security

U.S.P.S. Informed Delivery Vulnerable

Sounds like a cool idea – see what’s coming to your mailbox while you’re at work, or maybe on vacation.  That’s what the U.S. Postal Service’s “Informed Delivery” lets you do. Just fire up an app on your phone and see what will be delivered to your mailbox today.  Imagine sitting in front of the fireplace on a frigid February morning, absorbed by a fascinating article on CompuSolver.com.   The only sounds are the...

Read More »

2 New Website Scams

Posted by on Jan 14, 2017 in Blog, Web Security

2 New Website Scams

If you use a browser, you are susceptible to these two threats, but knowing one simple trick can save you from both and many more website scams. The Gmail phishing scam is the first scam we’ll cover.  You’ll click a link thinking it’s taking you to Gmail.  Then you get what looks like a legitimate Gmail login screen.  But guess again! How can you tell?   You look for the little green padlock, and as you can see in the 2nd image, it just ain’t there....

Read More »