If you are currently running WordPress 4.9.6 or older, which is currently all installations, a new critical vulnerability has been discovered. According to reports it allows “an attacker the capability to delete any file of the WordPress installation”. It seems there is some debate whether this is a big deal or not. If a hacker…
I have been helping out a past client and talking through his issues with his current web developer. The client I will call him Jeff. Jeff was not happy with his developer who we will call The Crook. The Crook has spent years over promising, under delivering and making excuses for why nothing is his…
About a few weeks ago I had a client who emailed me to say his partner’s web browser was locked up and there was a popup that was preventing him from closing the browser tab. He took a screen shot so that he could show me. It was low resolution but it was something I…
I downloaded my Facebook data because I wanted to see what advertisers knew about me. I was fairly certain it would not be much. I was right. I generally browse the web in two modes. I use incognito (Chrome) or private mode (Firefox) to cut down on ads that generally slow down the loading of…
You have spent a lot of money for a new website. It’s a real beauty of design. The designer used WordPress and explained to you how easy it is to make changes to your content. Six months, a year down the road little things start to go wrong. The site starts to slow down on…
If you are running your website using the Drupal content management system then you should pay attention. There is a serious flaw in Drupal versions 7 and 8 that will allow an attacker to compromise your web site. Below is the security advisory from the Drupal Security Team. A remote code execution vulnerability exists within multiple…
It’s been a little while since I wrote one of these and once again I want to talk about security. If you have a WordPress site than the hackers want in. They are interested in co-opting your site for their own interests. Whether it is to run their own programs or redirect you to their…
One little letter in a URL is what separates a secure connection from an insecure connection in your web browser. That is not to say there could not be malicious code lying in wait for you at the site you are connecting to. The five letters in https, the little lock that appears in the…
An out of date content management system is a recipe for trouble. Keeping WordPress and it’s plugins up to date is very easy. The developers regularly release security and maintenance releases that can be applied to your site with the click of a button. You will see a notice at the top of your dashboard page when one is released.…