Connect with us

Internet

WordPress Comprises 90% of Hacked Sites: Report

Published

on

WordPress accounts for the vast majority of compromised CMS platforms, with vulnerable plugins the prime attack vector, Sucuri has revealed in a new report.

The GoDaddy-owned security vendor analyzed 18,302 infected websites and over 4.4m cleaned files to compile its latest Hacked Website Trend report.

It revealed that WordPress accounted for 90% of hacked websites in 2018, up from 83% in 2018. There was a steep drop before Magento (4.6%) and Joomla (4.3%) in second and third. The latter two had dropped from figures of 6.5% and 13.1% respectively in 2017.

The problems associated with WordPress appeared not to have come from users running old versions of the platform. In fact, just 37% of infected sites on this platform were outdated, versus 97% for PrestaShop, 91% for OpenCart and 87.5% for Joomla.

“This data demonstrates that the work WordPress continues to do with auto-updates has a material impact. The one area that requires considerable attention, however, are the extensible components of the platform such as plugins,” said Sucuri.

“These extensible components are the real attack vectors affecting tens of thousands of sites a year. The primary attack vector abused when infecting WordPress are plugins with known and unknown vulnerabilities. This makes the role of third-party components more significant for this CMS.”

The firm also warned that e-commerce sites like those running on PrestaShop and OpenCart have an obligation under PCI DSS to improve security.

“Attackers have a high interest in targeting e-commerce websites with valuable customer data i.e. credit card and user information,” explained Sucuri. “It’s imperative these website owners update their software to ensure their sites have the latest security enhancements and vulnerability patches.”

The vendor highlighted several security challenges leading to risk exposure, including: backwards compatibility problems; reuse of leaked passwords; cross-site contamination; customized deployments; use of pirated software containing backdoors; and a lack of security knowledge and resources.

In 2018, 68% of all clean-up requests dealt with by the vendor contained at least one hidden PHP-based backdoor.

Continue Reading
Advertisement
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Internet

Google Chrome prepares new tab groups feature that creates groups automatically

Published

on

By

Months after announcing it, Google finally rolled out tab groups widely in the past couple of weeks. Now, an improvement could be coming to Chrome’s tab group feature — the ability to recreate them automatically.

In the latest Chrome Canary release, a new flag is present that describes a feature Google is working on. That flag, titled “tab groups auto create,” is one that has had us scratching our heads since it popped onto our radar earlier this week.

Google’s description, too, unfortunately doesn’t help matters. the company simply explains that the feature “automatically creates groups for users, if tab groups are enabled” in Chrome. What does that mean? We’re not entirely sure, but there are a few possibilities!

For one, Google might be able to remember tab groups from a previous session and drop them into a group when opened. Alternatively, Google could intelligently create groups based on similar types of tabs. At this point, it’s all up in the air. We can say pretty confidently, however, that this feature is not live in the latest Canary release.

Source: https://9to5google.com/2020/09/17/google-chrome-tab-groups-automatic-flag/

Continue Reading

Internet

Facebook Is Apparently Adding Instagram Stories to Its Key Application

Published

on

By

Facebook has built it no key that it would like to entwine Instagram into its principal blue app as a great deal as possible (to some Instagram users’ chagrin.) Its most recent experiment evidently requires placing Instagram stories right on Facebook.

In accordance to a report in the Verge, some Facebook customers have lately started looking at Instagram stories in their Fb story feeds. A Fb representative apparently verified the news to Matt Navarra, a social media marketplace commentator and advisor, and stated that it was a restricted examination. The representative added that Facebook would be listening to feedback from its group on the prospective new characteristic.

In a screenshot posted by a Twitter consumer and Navarra on Friday, Fb seemingly points out that not just anyone can view an Instagram story on Facebook. In get to do so, consumers have to website link their Instagram accounts to Facebook and have this viewing placing turned on. Fb states that men and women who don’t abide by a user on Instagram will not be ready to see that user’s tales.

Fb also purportedly pressured that even however tales will be in two sites, users’ overall practical experience would not improve. That is mainly because people will nevertheless essentially be sharing their tales with the similar persons on Facebook and Instagram. In addition, Instagram stories on Facebook (which will have a pink and orange circle) will surface with a user’s Instagram take care of. And even though the tales will be seen on Fb, end users will see all tale sights and replies on Instagram.

In new many years, Facebook has labored to convey all of its popular apps, which involve WhatsApp and Instagram, nearer with each other. Very last thirty day period, Facebook released a new exam working experience on Instagram messaging for some users. The new experience up-to-date the look of Instagram immediate messages and promoted the likelihood of chatting with individuals who use Fb.

Who knows, possibly in the foreseeable future we won’t have an application named Instagram or Fb. We’ll just have a person giant purple and blue app, owned by Facebook, that does almost everything.

Source: https://poptimesuk.com/facebook-is-apparently-adding-instagram-stories-to-its-key-application/175242/

Continue Reading

Internet

Cloudflare goes down; crypto websites hit

Published

on

By

Cloudlfare, an internet service provider responsible for various functions, went down Sunday morning, taking down many websites, including some crypto sites.

The company confirmed in a tweet it experienced issues around 9:24 am Eastern time caused by a third-party transit provider. Network stability returned around 11 am though Cloudflare said it is still monitoring for other potential problems. In a statement emailed to Cointelegraph, Cloudflare chief technology officer John Graham-Cumming said:

“Today we saw a widespread Internet outage online that impacted many multiple providers. This was not a Cloudflare-specific outage. Level 3/CenturyLink was responsible for an outage that affected many Internet services, including Cloudflare. Cloudflare’s automated systems detected the problem and routed around them, but the extent of the problem required manual intervention as well.”

A large majority of the internet uses Cloudflare. News reports noted several popular websites went down following Cloudflare’s network issues, including streaming site Hulu and cooperative gaming services PlayStation Network and Xbox Live.

Crypto websites were not immune. Bitfinex Chief Technology Officer Paolo Ardoino tweeted that the Cloudflare outage caused any connection issues to Bitfinex Sunday morning.

Picture

Cloudflare’s last outage made people question if crypto holders are truly decentralized. That outage reportedly affected Bitcoin transactions.

Source: https://cointelegraph.com/news/cloudflare-goes-down-crypto-websites-hit

Continue Reading
Advertisement

Trending

Copyright © 2020 Inventrium Magazine

%d bloggers like this: