If you are currently running WordPress 4.9.6 or older, which is currently all installations, a new critical vulnerability has been discovered. According to reports it allows “an attacker the capability to delete any file of the WordPress installation”. It seems there is some debate whether this is a big deal or not. If a hacker…
When I woke up this morning I checked my email and came across thirteen Wordfence Alerts from a clients website. There was a coordinated attempt occurring to brute force a login into the WordPress admin. Luckily the admin username is not common or guessable. It started at 12:22 am and it is still going on…
I have been helping out a past client and talking through his issues with his current web developer. The client I will call him Jeff. Jeff was not happy with his developer who we will call The Crook. The Crook has spent years over promising, under delivering and making excuses for why nothing is his…
Today the FCC’s rules governing Net Neutrality ended. The concept behind net neutrality was simple: the principle that Internet service providers should enable access to all content and applications regardless of the source, and without favoring or blocking particular products or websites. Now your Internet Service Provider can restrict access to any website they want,…
About a few weeks ago I had a client who emailed me to say his partner’s web browser was locked up and there was a popup that was preventing him from closing the browser tab. He took a screen shot so that he could show me. It was low resolution but it was something I…
I downloaded my Facebook data because I wanted to see what advertisers knew about me. I was fairly certain it would not be much. I was right. I generally browse the web in two modes. I use incognito (Chrome) or private mode (Firefox) to cut down on ads that generally slow down the loading of…
You have spent a lot of money for a new website. It’s a real beauty of design. The designer used WordPress and explained to you how easy it is to make changes to your content. Six months, a year down the road little things start to go wrong. The site starts to slow down on…
If you are running your website using the Drupal content management system then you should pay attention. There is a serious flaw in Drupal versions 7 and 8 that will allow an attacker to compromise your web site. Below is the security advisory from the Drupal Security Team. A remote code execution vulnerability exists within multiple…
It’s been a little while since I wrote one of these and once again I want to talk about security. If you have a WordPress site than the hackers want in. They are interested in co-opting your site for their own interests. Whether it is to run their own programs or redirect you to their…
Briefly unavailable for scheduled maintenance. Check back in a minute. That was the message WordPress was giving me. I had done something stupid. I was impatient and navigated away from the update page while it was working. I didn’t panic. I was sure I was not the first person using WordPress to have this problem…