Categories

Drupal Hack & WordPress Users

WordPress logo

It’s not a good day for Drupal users, with the security folks at the CMS platform telling all users to consider themselves compromised if they didn’t install a security patch within seven hours of its release on October 15th.

Fixing the infected sites will require a bit of work. Sites will need to be taken offline, and the current install of Drupal blown-up and replaced with a backup from before October 15th. Any changes made […]

Continue reading Drupal Hack & WordPress Users

WordPress Jetpack Sharing Plugin Exploited by Spammers

The sharing feature of the Jetpack plugin for WordPress is currently being exploited for the purpose of sending spam and possibly for DDOS attacks. FOSS Force became aware of this after we began looking into emails being sent to us by our server’s security system, notifying us of massive amounts of email being sent from our server. An investigation by our IT people traced the problem to the “Sharing” function of the Jetpack plugin.

Jetpack […]

Continue reading WordPress Jetpack Sharing Plugin Exploited by Spammers

Brute Force Attacks on WordPress Sites Underway

At about 1 p.m. this afternoon the security company behind the WordFence plugin for WordPress issued a security advisory via email informing users of their plugin that WordPress sites are currently under a brute force attack.

“As of 11am eastern time this morning we are monitoring the largest distributed brute force attack on WordPress installations that we’ve seen to date. The real-time attack map on www.wordfence.com became so busy that we’ve had to throttle the […]

Continue reading Brute Force Attacks on WordPress Sites Underway

WordPress – Too Fast For Comfort

WordPress logo

Something’s got to give with the WordPress cycle.

Just three months ago, back in September, WordPress issued version 3.6.1 of their content management and blogging platform. Last week they issued 3.8. In between there was 3.7 and 3.7.1, the later release raising eyebrows when it included an automatic “minor point” upgrade feature that can’t be easily disabled.

That’s an average of one release per month, a burden for someone trying to keep sites safe from […]

Continue reading WordPress – Too Fast For Comfort

The Importance of Free Websites

On October 26th, ten year old Charlie Thompson went to a Halloween party at a friends house in rural New York state. The weather was reasonably mild, so much of the party took place outside. At some point the children began playing a game of hide and seek. Charlie and another boy found a wooden board that Charlie thought would be a perfect place to hide. He lifted the board and knelt on another board […]

Continue reading The Importance of Free Websites