JetPack XSS Security Issue – What We Did to Protect You

jetpack
On October 1st, a security issue in JetPack, one of the most commonly used WordPress plugins, was disclosed by our partners from Sucuri. The vulnerability was severe because an attacker could exploit the contact form feature of the plugin to insert and execute JavaScript code as an admin of your site. Needless to say, that could lead to all sort of problems - injecting black SEO links, adding backdoors for full access to your account, accessing private information, etc. In this recap post, we would like to summarise what we did to protect SiteGround users with this plugin installed.

Read More

Bulgaria PHP Conference Organized by SiteGrounders Was Dope!

php-conf

The SiteGround team goes to many events, but the biggest and most important one for us this year was Bulgaria PHP Conference. Why? Well, it’s an event entirely organized by SiteGrounders and we invested all our passion, love, enthusiasm and tons of hard work into it in the last 8 months. Now that it’s over, we can relax and proudly say it turned out to be a huge success.
Read More

Major Change of Our Shared Hosting Infrastructure Starts This Month

rocket2
Most of our clients know that here at SiteGround we tend to upgrade our hardware quite often. We aim to ensure that all our clients’ sites run on the latest and fastest hardware on the market and when we spot a valuable new piece of hardware, we immediately start testing. This year again, we are getting ready to migrate all of our shared hosting servers to new supercharged monster servers. Unlike other times though, this time we’ll not only upgrade the hardware, but also the whole infrastructure of our shared hosting platform.
Read More

DrupalCon Barcelona 2015

SiteGround DrupalCon Booth

And yet another DrupalCon went by. SiteGround team attended one of the biggest Drupal events for the year to meet some of the smartest people in the community in Barcelona this week.
Read More

Killing SSL SHA-1 Certificates And Making The Web A Safer Place

sha1

Recently PayPal has sent emails to many of its users informing them that SSL upgrades will be performed on their servers and SHA-1 certificates will be upgraded to SHA-256. Some people got confused what they should do when receiving these emails, as the mail that PayPal sent and the blog post they shared, giving more details to the users contain very technical information. Hence, we would like to explain to our customers how end users will be affected from the changes that PayPal makes and what they have to do. Read More