Tag: Vulnerabilities (Page 1 of 2)

SiteLock Website Security Insider

Introducing the SiteLock Website Security Insider

SiteLock is excited to announce the publication of its first quarterly website security report, The SiteLock Website Security Insider Q2 2017!

The SiteLock Website Security Insider Q2 2017 includes analysis and trends based on proprietary data from over 6 million websites. The report delivers exclusive insight into the most common threats website owners faced in Q2 2017, including:

  • Malware Trends – Spam accounted for over 62% of total malware files on hacked websites in Q2 2017. This section explores malware breach incidents to determine the reach and severity of individual malware types and families.
  • Content Management Systems Risks – In Q2, 69% of infected WordPress websites were running the latest security patches for WordPress core at the time of compromise. We explore the increasing infection rates for various popular content management systems (CMS) in this section.
  • Plugin Risks – We found that WordPress websites with 20+ plugins are 3.6 times more likely to be compromised than the average website. Learn how the number of plugins can broaden a website’s attack surface and risk of compromise.
  • Website Attacks – Websites experienced 63 attacks per day, per website on average in Q2 – an upsurge from 22 attacks per day in 2016. This section discusses the common trends and prevalence of attack vectors.
  • Common Vulnerabilities – Websites with cross-site scripting (XSS) vulnerabilities averaged 74 vulnerable URLS each in Q2. Learn the prevalence of the top vulnerabilities websites faced in Q2 2017 and why they are so attractive for adversaries to exploit.
  • Social Media Risks – Websites linking to Twitter are 2.7x more likely to be compromised than the average website. As Twitter follower count increases, so does the risk. This section explores how social media can contribute to a website’s likelihood of compromise.

Research from this report will help website owners around the world prepare and respond to today’s ever-evolving cybersecurity threats. This report also presents security best practices that all website owners can leverage and easily implement into their current website strategy.

Click here to download your copy of the The SiteLock Website Security Insider Q2 2017!

secure your website

Decoding Security Episode 102: Securing Your Website

In light of the recent Equifax breach, you may be wondering how you can secure your website and prevent a similar event from happening to you. Join Web Security Research Analysts, Michael Veenstra and Jessica Ortega, for a refresher course on the basic steps every website owner should take to protect their website from hackers and cybercriminals.

If you found this week’s episode helpful, visit Decoding Security on your preferred podcasting service, including iTunes and Google Play, to leave a review and subscribe so that you don’t miss future episodes!

Malware

Apache Struts Vulnerability Found and Patched

A vulnerability was recently discovered in Apache Struts, a popular framework for web-based Java applications, which allows for remote code execution on affected servers and allows for complete control of the application. The framework is commonly used by large, sophisticated organizations such as Lockheed Martin and Citigroup, meaning the vulnerability could affect up to 65% of Fortune 100 companies, resulting in large scale data breaches and private consumer data theft.

Found by lgtm.com security researcher Man Yue Mo, the vulnerability stems from unsafe deserialization of user supplied data to the REST plugin, which allows API access to the Java application. Researchers contacted the Apache Foundation directly, allowing the plugin developers to patch the issue before widespread exploitation. As of this writing, at least one live exploit has been seen in the wild, and a Metasploit module was released.

Apache Struts joins a growing fraternity of widely used applications to see an API vulnerability this year, including WordPress and Instagram. WordPress shared a similar experience where the exploit was discovered before widespread attacks, but many users failed to update and suffered compromise and data loss. The Struts vulnerability is more complicated to exploit which should result in a less dramatic rise in attacks. Regardless, patches should be applied as soon as possible, as a proactive security stance is more effective.

Apache Struts users are urged to upgrade to version 2.3.34 or 2.5.13 respectively, and additional information is provided by Apache on the official struts webpage at: https://cwiki.apache.org/confluence/display/WW/Version+Notes+2.3.34 and   https://struts.apache.org/announce.html#a20170905.

More sophisticated exploits are likely to occur as this vulnerability is examined. The best option for mitigation is to patch Struts as soon as possible to the recommended versions and regularly check for updates. Website owners should also consider adding a web application firewall and malware scanner to mitigate or reduce the severity of compromise.

SiteLock TrueShield customers are already protected against this exploit. Attempted attacks will be caught and blocked by the TrueShield WAF. If your website isn’t protected, call SiteLock at 888.878.2417 to get TrueShield installed today.

SiteLock Popularity Infographic

Popular but Insecure [Infographic]

The more popular the website, the more likely the cyberattack. Find out your website’s risk of being compromised.

Read More

sitelock reviews

Bluedge Business Solutions Seeks Help From SiteLock [Case Study]

Company Background

Darin Wilson founded Bluedge Business Solutions in 2010 after several friends and colleagues reached out to him for help with their businesses. Bluedge is a comprehensive marketing and business development firm specializing in marketing, branding and planning for companies of all sizes. Wilson stands by the Bluedge philosophy for each of his clients: create an effective three-tier marketing plan by synchronizing the client’s goals, sales plan and tactics.

Wilson’s website, bluedgebiz.com, is the face of his firm. The site provides visitors with information about the company’s services and project portfolio. Prospecting clients visit bluedgebiz.com to read and request information. It is very important to Wilson’s business that the site is available to his visitors at all times.

Read More

Hackers Compromise Website

How Hackers Compromise Your Website

Cybercriminals are unpredictable. They’ll surprise you by sneaking into your website, executing attacks and harming your data and business. You can think of it like a baseball game in which the hacker is trying to make it to the next base without getting called out. Secure all your bases by learning a little about how hackers attack your website.

Read More

WordPress plugin vulnerability

SiteLock Research Team Uncovers WordPress Plugin Vulnerability

The SiteLock Research Team will have many firsts as it develops. This week we’ll discuss the first reported and patched vulnerability the team found, a minor cross-site scripting vulnerability in Testimonial Slider.

The team has been working on putting together a new vulnerability research process.   During the creation of this process, we tested a not-so-randomly chosen WordPress plugin, Testimonial Slider. We chose Testimonial Slider for no other reason than it was a slider plugin, after the recent Revolution Slider exploit.

What Does Testimonial Slider Do?

Testimonial Slider, developed by SliderVilla.com, displays customer testimonials in a responsive slider and has over 10,000 installs. We analyzed version 1.2.1 using SiteLock TrueCode and manual analysis.

Read More

XSS vulnerability - cross-site scripting

What Is An XSS Vulnerability? Part One

In the world of websites, hackers have a variety of tools to intrude on people’s domains. These hacks, which take advantage of vulnerabilities in a site’s code, are categorized by projects like the OWASP Top Ten.

According to the OWASP assessment, the top three most common attacks are:

  • Injection
  • Weak Authentication and Session Management
  • Cross-Site Scripting (XSS)

 

As new vulnerabilities are discovered, we still can see that a large portion of these vulnerabilities are XSS-related vectors.

Read More

security research

An Overview of SiteLock’s Security Research Efforts

As SiteLock continues to innovate and push the boundaries of web site protection, we’ve invested in and grown our security research team to provide new capabilities and content for customers and the security community at large.

This week, we will discuss what the SiteLock Research Team is, the team’s mission, and provide an overview of the team’s emerging efforts, as well as where to find and how to interact with the team.

Read More

Magento vulnerability

The Magento Remote Code Execution Vulnerability

Earlier this week, a remote code execution vulnerability against Magento, the eBay-owned free and paid eCommerce platform, was released. Security researchers chained together multiple smaller vulnerabilities to ultimately run arbitrary code on the server Magento is hosted on.

Read More

Page 1 of 2

Powered by WordPress & Theme by Anders Norén