Paul Jacobs

Black Friday Phishing, Anyone?

black-friday4
​ If this year's Black Friday/Cyber Monday online shopping season is anything like last year's, it'll be a turkey shoot, not only for shoppers, but for hackers too. Bargain hunters are impetuous by nature, the online species more so. In the heady excitement of discount fever virulent throughout the forthcoming holidays, shoppers are more likely to click a phishing link without checking it first. They're also more likely to be shopping on a mobile device , where it's harder to see if a site is genuine or not. Billions of dollars will pass from customer to online shop, some of it through, or aided by, your servers. Your success as a hoster depends on the success of your customers' sites being ...
Continue reading
Paul Jacobs

Drupalgeddon Updates to 2.0 - Shouldn’t you update too?

drupalgeddon
The latest wave of Drupalgeddon activity highlights the importance of keeping software up to date, especially when it's a popular CMS like Drupal , itself based on the rapidly changing web development programming language PHP and the widely used open source RDBMS MySQL. Our Analyst's Insight into this vulnerability gives more details. Imunify360 defends against this threat by virtue of a sophisticated WAF rule set developed and maintained by our own threat intelligence team. Larger vendors' rulesets are too general and too inflexible to track such dynamic threats. Another component in Imunify360's layered security defenses is called Proactive Defense. It uses comprehensive heuristics to dete...
Continue reading
Paul Jacobs

Why every month should be National Cybersecurity Awareness Month

ncsam
This month, October 2018, in the US it is the 15th National Cybersecurity Awareness Month . Another month, another 'awareness' . Does this suppose that all the other 11 months we should be less aware? Do hackers make a special effort to be nicer in October? Do they leave love letters on your server instead of malware? Does it help if you live on Tokelau*? No. EVERY month is cybersecurity awareness month, and every week and every day and every second of every day, everywhere. Because cyber attacks are automated. Hackers are using scripts and scalable tools to do the grunt work, the same way you make scripts to automate tedious tasks on your servers. Here's a recipe for success this cybersecur...
Continue reading