Critical vulnerability in the famous Kunena forum component for Joomla! were announced three days ago and a new version of the component that addresses the issue was released. According to the official Kunena blog post all extension that are not updated to the latest version are vulnerable and the attackers may use XSS and SQL injection to gain full access to a Joomla! site.
You’ve probably heard that before, but here at SiteGround, we love Open Source. Our hosting platform is built on open source software, we host more than 150 different open source apps, and we sponsor various open source events and communities. Yet, this was our first time we sponsored OSCON – the biggest conference about everything open source, that happened in Portland last week.
A serious vulnerability in one of the most popular WordPress plugins - WPtouch was announced yesterday. The exploit allows registered users to upload malicious PHP files to your website and use them to gain further access to it.
If you are a Magento GO customer you have probably already heard of the upcoming shutdown of the service. We have had quite a few existing and prospective customers ask about the options they have if they are to continue using Magento by switching to Magento Community Edition, so we decided it would be a good idea to put it down in writing so that more people can consider the various opportunities.
If you have gone through the anguish of having your personal information exposed to theft and abuse, you probably already realize that even the best password is not always enough to protect your data against unauthorized access. There are many ways how you can find yourself exposed: lost/stolen electronic devices, electronic fraud (phishing, scam, etc.), and hacking of popular service providers have all become widespread. Read More
Another serious security issue was reported earlier today within one of the popular WordPress plugins for managing thumbnails - TimThumb. This plugin already has a history of causing security issues in the past with which we dealt with. The current vulnerability allows the attacker to gain unauthorised access to your hosting account and even execute shell commands on it. Needless to say, this is not something we can allow to happen.
Our security team has reacted immediatelly after the vulnerability was disclosed. We have applied a patch in our in-house system to protect all our customers from getting hacked through TimThumb. Currently, if you're hosted on SiteGround, you will be protected against hacking attempts that try to utilise this problem.
However, we strongly recommend that you switch plugins or update TimThumb as soon as new version is released.
It is very stressful to receive a call while on a vacation by a customer, asking if you have any idea why his site is down. It is even more unpleasant to realize that the reason is something so simple, as a failed renewal, or something else, that you could have easily prevented, if you knew about it on time. To minimize the chance for such situations we have launched a brand new SMS notification system.
When we launched our new affiliate program almost 2 years ago we aimed to increase the number of people who recommend us by providing very competitive payout terms. However, we did not want to diminish the importance of our service quality and our goal was to keep it the number one reason for people to endorse us. The ever growing numbers of affiliate sales over the last 2 years showed that we were on the right track in attracting more affiliates, but we were not so sure about their motivation to join the program and recommend us. That, combined with our wish to gather more information about who our affiliates are, how they rate the different aspects of the program, and what we can do to make things better for them, made us conduct a survey among our affiliates and the results are summarized below. Read More