Malware

Update your Blog to WordPress 2.8.6

Nov 13th

Posted by Bibokz in Blogging

No comments

I just update my blog to WordPress 2.8.6, the new version fixes exploited registered (XSS vulnerability) and users logged-in  posting privileges(exploited in certain Apache configurations by uploading files).

So if you have untrusted authors on your blog, 2.8.6 is necessary. Let’s keep our make money online machine safe!

, , ,

How to Protect Your Site Against Hackers

Jun 5th

Posted by Bibokz in Advice

8 comments

Database-driven sites are vulnerable to hackers, who can (and do) exploit bugs in those programs to gain unauthorized access to your site. The following are some things you can do to help secure your site.

Check all of your website files and folders and make sure that they all have the correct permissions- The standard permission settings for files would be 644 and folders would be 755. Please be aware that these are the standard settings, your site may have different requirements.

Set register_globals to OFF

1.Turn off Display Error/Warning Messages. Set error_display to ZERO.

2.Never run unescaped queries

3.Validate all user inputs. Items on More >

, , ,

Western Union scam email

May 27th

Posted by Bibokz in Malware

1 comment

Received this email yesterday:

Dear customer!

The money transfer you have sent on the 4th of April wasn’t received by the recipient. According to the Western Union regulation the transfers which are not received in 30 business days are to be returned to sender.

To collect cash you need to print the invoice attached to this letter and visit the nearest Western Union branch.

Thank you!

Sender: “Western Union Support Team” <support@westernunion.com> Subject: Western Union Transfer MTCN: #######

Note: If you see this email, or one similar to it, delete it. Western Union didn’t really send it. And don’t open the attachment.

Its another Western Union scam More >