If you haven’t updated Adobe ColdFusion in the last month, now is a good time to consider updating to the latest version. In July, Adobe released three security patches that are all rated Critical, Priority 1. This carries Adobe’s highest severity rating for vulnerabilities, along with its highest priority patching recommendation that administrators update as […]
Read More →Earlier this month, Vivio’s President, Mark Keymer, was interviewed by HostAdvice. Can you tell us something about the beginning of the company? When it was founded? What was the idea behind it? Vivio Technologies was originally created in 2002 to be the company around a traffic exchange site. We worked on that product for the […]
Read More →This is a guest post by HostAdvice. Most people have heard about shared hosting, VPS, and dedicated hosting, but few are familiar with email hosting. Email hosting is another type of web hosting that works similarly to the other web hosting types. Namely, it is a hosting service that rents out and operates email servers. […]
Read More →TLDR: Verify that the hotfix has been applied to your Sophos Firewall v18.5 MR3 (18.5.3) and older. Vulnerability Name: CVE-2022-1040 What does it do? An authentication bypass vulnerability in the User Portal and Webadmin allows a remote attacker to execute code. What operating systems/software versions are affected? Sophos Firewall v18.5 MR3 (18.5.3) and older. Why […]
Read More →TLDR: Verify that you’re running a secure Linux kernel version. Vulnerability Name: CVE-2022-0847 or “Dirty Pipe” What does it do? This flaw in the Linux Kernel can be easily exploited, giving a local user the ability to overwrite data in read-only files. What operating systems/software versions are affected? Linux Kernel 5.8 and later versions are affected, but it’s […]
Read More →We’ve finished the pricing updates for ColdFusion, Windows, cPanel, and Sophos licensing. If you’re on one of the plans listed below, you’ll see these new prices reflected on/or after your invoice for the April service period. If your plan is not shown in the list below, we’re still converting your services to the new plans, […]
Read More →The log4j exploit that came out today affects many Java applications and other apps that use this logging package. It is important that you check to see if any of your applications use log4j, and if they are a version that you should work on patching. Some examples of software that might use and need […]
Read More →What is Ransomware? Ransomware is malicious encryption software used to take control over an organization’s data. After the data is encrypted, the attacker will demand payment in exchange for the decryption key, usually in the form of cryptocurrency. Why is it so difficult to prevent ransomware attacks? Ransomware is a highly-competitive industry and continually evolving […]
Read More →TL;DR: If you’re using the plugin, Starter Templates on your WordPress site, make sure you’re using version 2.7.5 or higher. Vulnerability in the Starter Templates Plugin Last month, Wordfence disclosed a vulnerability in the plugin, Starter Templates allowing contributor-level WordPress users the capability of overwriting any page on the website. This vulnerability has been given […]
Read More →File-based validation for Wildcard SSL certificates is changing. The process may be a little different the next time you purchase or renew a Wildcard certificate. On November 15, 2021, the certificate authorities that issue SSL certificates will no longer accept file-based Domain Control Validation (DCV). So if you’re used to uploading a file to your […]
Read More →