Happy HTTPS 2017 to you!

Last year we made a big step towards making the SSL certificates more widely used. We backed financially the super cool open SSL project Let’s Encrypt and we provided an easy cPanel interface, from where all our users can issue free Let’s Encrypt certificates with a single click. This has resulted in more than 40 thousand new SSL installations on our servers. However, there is still a long way to go before we see HTTPS protocol completely replace the insecure HTTP.  Now, in the very beginning of 2017 we are happy to announce that we have taken the next big step in this direction -- we have started to automatically issue Let's Encrypt certificates for every domain that is hosted on our shared servers.

Read More

PHP 7.0 is Now Default on SiteGround Servers

Last December we were among the first hosting companies to make PHP 7.0 available on our entire infrastructure. Thanks to our system which allows multiple PHPs to be used on one server, anyone could have switched to PHP 7.0 since its zero-day release, while we still kept an older and well-tested PHP version as the global default setting. Now, an year later we believe it's time for the next step - setting PHP 7.0 as default for all new accounts.

Read More

Is Your Online Store Ready for Black Friday?

black-friday

Black Friday is a date, highly anticipated by marketeers and store owners across the entire world. What started as a purely American tradition is now a global event. On this day stores give their greatest discounts and a lot of people are anticipating it to get the item or service they've been looking forward to for months. Usually on Black Friday online stores get a huge traffic peak and multiply their sales. However, you have to make sure that both your website application (e.g. WordPress) and hosting environment are prepared for this traffic surge. Otherwise you risk turning a great sales day into a disaster. Read on to get more information on how to prepare your online store for the upcoming Black Friday and get the most out of it!

Read More

Jetpack Critical Security Vulnerability

jetpack

Today a critical vulnerability was found in one of the most popular and widely used WordPress plugins - Jetpack. Fortunately, according to the plugin authors there is no evidence that this issue has been used to hack real sites. However, an update of the plugin was released - Jetpack 4.0.3.

As usual, our security team was pro-active and updated our WAF (web application firewall), adding rules to prevent the hack from being used. This means that even if your plugin is not updated to the latest version, your site will still be protected. However, we urge all Jetpack users to update the plugin to its latest version in which the vulnerability is patched.

ImageMagick Vulnerability Fixed

imagemagick

ImageMagick is one of the most widely used services to process images. Most of the web applications use it for many different purposes - to crop images, to resize them, to generate different thumbnail sizes, etc. Unfortunately, a serious vulnerability was discovered within the service, that allows an attacker to execute code remotely on your site. As usual our security team started working on a way to protect our customers immediately and came up with a solution hours after the vulnerability was disclosed.

Read More