Venom Vulnerability and SiteGround Cloud and VPS Accounts
A serious security issue in one of the world's most popular machine emulator and virtualizer QEMU, used by the most popular virtualization systems - KVM, Xen and others has been discovered. The...
View ArticleKilling SSL SHA-1 Certificates And Making The Web A Safer Place
Recently PayPal has sent emails to many of its users informing them that SSL upgrades will be performed on their servers and SHA-1 certificates will be upgraded to SHA-256. Some people got confused...
View ArticleJetPack XSS Security Issue – What We Did to Protect You
On October 1st, a security issue in JetPack, one of the most commonly used WordPress plugins, was disclosed by our partners from Sucuri. The vulnerability was severe because an attacker could exploit...
View ArticleCore Joomla! Vulnerability Patched in Version 3.4.5 Security Release
A few days ago, a critical vulnerability in the Joomla! core was found. It comes from an unsanitized input in the Joomla! core, which makes an SQL injection possible. The result of such an attack can...
View ArticleCritical Vulnerability in Joomla Fixed on Zero-day
Yesterday, a serious vulnerability that affects all major Joomla versions was disclosed. Using this security breach a hacker could do a full remote command execution on the targeted site. We have...
View ArticleLet’s Encrypt is Here – Open Source Security Certificates Available at...
In December 2015 the new certificate authority Let’s Encrypt entered Public Beta and caused a wave of excitement. The groundbreaking news meant that website owners can obtain security certificates for...
View ArticleCritical glibc Vulnerability Patched on all SiteGround Servers
Hours ago a critical vulnerability in the GNU C Library (glibc) was announced alongside a proof of concept for the attack. This library is one of the main components in the majority of Linux...
View ArticleJetpack Critical Security Vulnerability
Today a critical vulnerability was found in one of the most popular and widely used WordPress plugins - Jetpack. Fortunately, according to the plugin authors there is no evidence that this issue has...
View ArticleSafe from httpoxy Vulnerability or How Thinking Ahead Pays Off
A dangerous easy-to-exploit vulnerability called httpoxy discovered 15 years ago, reappeared again yesterday, leaving server-side website software potentially open to attackers. This security hole...
View ArticleWhen Your CMS Reaches End of Life
End of Life (EOL) in the CMS world refers to the point in time when an older version stops being supported by the company or community that has built it, and all efforts are focused on current and...
View ArticleDirty COW Linux Kernel Vulnerability Fixed
Last week a very serious vulnerability in the Linux kernel, the so called Dirty COW, was reported. Our dedicated Linux kernel team immediately addressed the issues and were able to patch it in less...
View ArticleLinux kernel local root exploit (CVE-2016-8655) fixed
Yesterday a Linux kernel local root exploit was found and reported. One more time our dedicated Linux kernel team acted quickly and was able to apply the official vulnerability patch in less than 24...
View ArticleAre You Ready to Get Hacked?
In the security world, the following advice seems to be gold: keep templates and plugins up to date; use secure passwords and captchas; be careful whom you give access and to what; use a security...
View ArticleCloudflare HTTPS and WAF Update
Since we launched our integration with Cloudflare in 2012 we have seen thousands of our customers benefit from its CDN and the site security functionalities. Today we are happy to announce two...
View ArticleNextGEN Vulnerability Patched on SiteGround Hosting
Yesterday, our partners from Sucuri have discovered a serious SQL injection vulnerability in one of the most popular WordPress gallery plugins - NextGen Gallery. Our security team started working...
View ArticleYITH WooCommerce Wishlist Protection Added
Тoday, a serious vulnerability issue with one of the vastly used Yith plugins - the WooCommerce Wishlist was discovered by Sucuri. The latest plugin version - 2.2.0 patches the vulnerability but all...
View ArticleFree Let’s Encrypt Wildcard SSL
Starting from today, all SiteGround customers can get a free Let’s Encrypt Wildcard SSL. This will make the setup and maintenance of websites with subdomains much easier, as they can now be encrypted...
View ArticleHow is SiteGround Getting Ready for the GDPR?
We are receiving more and more inquiries from clients asking if SiteGround will be GDPR-compliant. With this blog post, we would like to explain what we have been doing and share our experience with...
View ArticleTLS 1.3 and OCSP Stapling -Two Ways to Make HTTPS Sites Faster
For the last few years, the trend of moving towards encrypted browsing through HTTPS has been one of the most important developments on the Internet. With the free SSL certificates by Let’s Encrypt and...
View ArticleGoogle Starts Serious Security Talks With the CMS Community
Last week, Chicago was the coldest place on earth! This was all over the news. The temperatures dropped to -30 degrees Celsius (-22 Fahrenheit) with a wind chill of -50. I consider myself lucky to...
View Article
More Pages to Explore .....