Security

a robber behind a mobiel icon

Your password is your first line of defense against hackers, so make it a good one

Chris Grant (he/him) November 08, 2019 0 Comments
Combine unrelated words to make stronger passwords To create a strong password, try combining two or more unrelated words. It could even be an entire phrase. Then change some of the letters to special letters and numbers. The longer your password, the stronger it is. A single word with one letter changed to an @ or ! (such as p@ssword!) doesn’t make for a strong password. Password cracking...
Read More

Cyber criminals send victims their own passwords in Bitcoin blackmail scam

Chris Grant (he/him) October 30, 2018 0 Comments
Cyber criminals are attempting to blackmail unsuspecting victims by claiming to have used the victims' password to install spying malware on the victims' computer. The criminals claim they’ve recorded videos of the victim watching adult material by activating their webcam when they visit these websites. What makes this scam so convincing is that the email usually includes a genuine password the...
Read More

How to keep the cyber-criminals out

Chris Grant (he/him) October 25, 2018 0 Comments
Cyber-criminals use weaknesses in software and apps to attack your devices and steal your identity. Software updates are designed to fix these weaknesses and installing them as soon as possible will keep your devices & data secure. Software updates don’t have to get in the way of what you’re doing. You can choose to install them at night, when your device is plugged in and connected to...
Read More
important-information-about-the-security-of-websites-running-drupal-version-757-or-below-or-drupal.png

Security of Drupal 8.5 or below.

Chris O'Brien March 21, 2018 0 Comments
This post contains important, time sensitive information about the security of your website if you're running Drupal version 7.57 or below or Drupal 8.5 or below. If you're an O'Brien Media client with a Drupal website you'll probably be familiar with the periodic Drupal update emails we send out regarding how important it is to keep up to date with security patches and other updates for your...
Read More
the-end-of-the-insecure-web-is-nigh-switch-to-https-to-keep-current.jpg

The end of the insecure web is nigh, switch to HTTPS to keep current

Chris O'Brien February 10, 2018 0 Comments
For the past several years, Google has been leading the charge towards a more secure web by strongly advocating that website owners adopt HTTPS encryption. And within the last year, Google has also helped users understand that HTTP sites are not secure by gradually marking a larger subset of HTTP pages as “not secure” - including contact and enquiry forms. Beginning in July of this year,...
Read More
Malicious website password reset requests on the rise from Russia

Important: Malicious website password reset requests on the rise from Russia

Chris O'Brien February 02, 2018 0 Comments
With all the interest in Russian hackers and a certain presidential campaign you'd be forgiven for thinking that only high-profile websites and individuals are targets for hackers. Not so. Over the past week we’ve seen a 1900% (yes one thousand nine hundred) percent increase in the number of malicious login attempts to websites hosted on our servers. And we’re not alone. Across the...
Read More
keep-your-wordpress-or-drupal-website-up-to-date-to-stay-safe-from-hackers.png

Keep your WordPress or Drupal website up-to-date to stay safe from hackers

Chris O'Brien November 26, 2017 0 Comments
How often should you update your WordPress or Drupal, themes and plugins/modules? The short answer is as often as possible... and here's why. The main reason for this is security. WordPress & Drupal sites are prime targets for hackers. These hackers don't want to bring you down because they dislike you, in fact most of these hacks originate from bots crawling the web, looking for WordPress...
Read More
is-your-website-using-https-google-is-dropping-support-for-http-on-chrome-from-october.jpeg

Is your website using HTTPS?

Chris O'Brien August 24, 2017 0 Comments
Google’s efforts with Chrome to encourage the web’s transition to HTTPS are beginning to pay off. The company has now announced plans to extend the effort with the “Not secure” badge scheduled to show up on more HTTP pages. With version 56 in January, Chrome began marking HTTP sites with password or credit card fields as “Not secure” in the address bar. As a result, Google...
Read More
new-ransomware-campaign-is-targeting-google-chrome-users-with-fake-font-update-alerts.png

New ransomware campaign is targeting Google Chrome users with fake font update alerts

Chris O'Brien February 27, 2017 0 Comments
A new ransomware campaign is targeting Google Chrome users.  If Chrome users visit a compromised site, an alert will pop up prompting the user to “update” a Chrome font extension.  The false update claims it need to execute because Hoefler Text is not found.  Although this text font is legitimate, the update is not. According to Forbes, researchers have found after users execute the fake...
Read More
hundreds-of-thousands-of-wordpress-sites-defaced-through-rest-api-vulnerability.jpg

Hundreds of Thousands of WordPress Sites Defaced through REST API Vulnerability

Chris O'Brien February 07, 2017 0 Comments
At the end of January, WordPress 4.7.2 was released to fix four security issues, three of which were disclosed at the time of the release. The fourth and most critical issue, an unauthenticated privilege escalation vulnerability in a REST API endpoint, was fixed silently and disclosed a week after the release. This vulnerability allows anyone with the right know-how to edit the content of...
Read More