Follow BlogTips via RSS Get BlogTips updates via Email Follow @SM4NP - Social Media for NonProfit

Posts Tagged ‘ security ’

Is your Twitter account hacked?

Dec 19th, 2012 | By
Is your Twitter account hacked?

More and more Twitter accounts are sending out unsolicited spam tweets without the owner even noticing it. These tweets are sent either as “replies” or as “direct messages” to the account’s followers. The spam tweets look like this: exactly what are you doing on that video clip  + link some real nasty stuff said about (…)

[continue reading...]


How to secure WordPress timthumb.php

Sep 16th, 2011 | By
How to secure WordPress timthumb.php

If you have a selfhosted WordPress blog (WordPress.org), take urgent measures to secure your site from a recently discovered vulnerability. Many WordPress themes and plug-ins use a script called “timthumb” (timthumb.php). This is the most common code used to create thumbnails from pictures. End July, a vulnerability surfaced showing external users could dump malicious code (…)

[continue reading...]


GoDaddy sites hacked again

Sep 18th, 2010 | By
GoDaddy sites hacked again

After the massive hacks injecting malware into shared hosted sites from several providers back in April and May, it seems they are back at work. Many sites hosted by GoDaddy are being hacked at the moment I am writing this post. Two of mine were affected an hour ago. Update: Hit again this morning (Sept (…)

[continue reading...]


Shared hosting: Pay Peanuts, Get Monkeys

Jul 11th, 2010 | By
Shared hosting: Pay Peanuts, Get Monkeys

See the bottom of the post for updates on my adventures with GoDaddy shared hosting.. My experience in selfhosting my blogs with GoDaddy moved from a glowing enthusiasm via consternation and frustration into a deep distrust and disbelief. In this post, I want to take you through the past year, as I discovered some of (…)

[continue reading...]


Securing your WordPress blog

May 25th, 2010 | By
Securing your WordPress blog

Bloggers have rushed to secure their selfhosted WordPress blogs after the recent massive hacks on shared hosts. I was one of them, even though only one of my blogs was affected. I spent hours browsing, looking for good resources, common knowledge, and solid tips to form a list of quitessentials on WordPress security. I also (…)

[continue reading...]


Monitor malicious file changes on your WordPress blog

May 23rd, 2010 | By
Monitor malicious file changes on your WordPress blog

During the the latest spree of hacks in April and May, hackers dropped a malicious .PHP script on the root directory of selfhosted blogs. The script changed all .PHP files, adding one line of code which redirected visitors to a virus-infested site, and then deleted itself. There was anything between a day and an hour (…)

[continue reading...]


An analysis of the latest website hacks

May 21st, 2010 | By
An analysis of the latest website hacks

After the latest spree of hacks on thousands of websites, it is time to look at some of the commonalities and ways to security our sites better. Given that the security holes are clearly at the level of the website hosting companies, and it is their duty to close those holes, nothing stops us from (…)

[continue reading...]


Godaddy hacked again. Another way to cure your site.

May 17th, 2010 | By
Godaddy hacked again. Another way to cure your site.

Godaddy got hacked again this morning (This is what Godaddy has to say about it). Update: and again on May 20. And again on September 18 and September 21. If you host your blog on Godaddy, you would do well to check your site regularly for any malware, and here is how. The hack is (…)

[continue reading...]


How to check if your blog is infected with malware?

May 14th, 2010 | By
How to check if your blog is infected with malware?

I reported before how to detect if your blog was infected with the recent massive hackers attacks on hosting sites, and how to cure it. As a follow up, here is the easiest way to detect if your blog has the malware injected: Use the sucuri.net free scanner ! Just enter you blog URL including (…)

[continue reading...]


How to cure your GoDaddy WordPress hacked blog

May 9th, 2010 | By
How to cure your GoDaddy WordPress hacked blog

Update: I adapted a script to easily verify and cure the infection on your site. Check this post for more. The GoDaddy hosting service got hacked three times in a row now. On April 27, May 1 and May 7, many sites, including thousands of WordPress blogs, got infected by malware code. Update: GoDaddy hosted (…)

[continue reading...]


Selfhosting or not: Hackers

May 5th, 2010 | By
Selfhosting or not: Hackers

In a previous post, part of a series about selecting the right blog platform, I urged you to think if you want to selfhost your blog or not. I revisited the subject, stressing the fact that when you choose for selfhosting, you should be aware of the many things bloghosting platforms like Blogger would do (…)

[continue reading...]