Similar to Gutenberg, this WSOD feature seems like a great idea on the surface. However, unintended consequences (like Gutenberg’s compatibility issues) will surely cause more harm than good. While it’s extremely frustrating and embarrassing to have a website crash, part of the job of a web host is to troubleshoot and remedy the issue asap.
In previous blog posts, I've briefly mentioned using Pyxsoft Anti Malware for actively monitoring my server for attackers. In essence, it's a security plugin for Web Hosting Manager for servers that run CentOS or CloudLinux. Features include blocking potential malicious uploads (authorized - such as from a form; or via an exploit) and brute force protection (like repeated WordPress login attempts). The plugin also can scan your server for malware automatically or upon request. The Pyxsoft team claims that their database has over 4 million virus definitions! Having used Pyxsoft Anti Malware for the better part of 3 years for...
Since no news (or even confirmation) from the Chinese has been presented as to why Bing went bye-bye, one can only speculate. If I had to guess, I’d say that the increasing tensions of U.S.-China relations have played a part. The trade war between the two countries is as vicious as ever. On top of that, the detention at U.S. request of a Chinese CFO of the mega-corporation Huawei in Canada has caused an even further rift. This banning of Bing could be another tit-for-tat with Microsoft, of all companies, being an innocent victim.
Chances are, if you’re reading this, you’ve either been a victim of an abandoned theme or you’re considering purchasing a staple theme that will be used for future clients. Fortunately, for me, one of my main go-to themes has been wildly popular and receives updates on a consistent basis. I consider myself lucky because there really is no fool-proof method to predict whether a theme will dissolve into obscurity.
If indeed this attack was carried out by a former employee, it has to be one of the dumbest of all time. Jail time and fines are certain to follow for the perpetrator. I’m sure many of us have been unfairly treated by a former boss or two. However, that doesn’t excuse such behavior as to destroy property and harass or intimidate that company’s clients.
There is no reason NOT to upgrade your PHP version to 7.x. It’s faster, more secure and has features that some plugins and themes require anyhow. Perhaps the only websites running a lesser PHP version are those that haven’t been updated in ages. If that’s the case, there is a good chance that the theme being used has been abandoned which would necessitate a redesign.
I used to get requests from clients to redirect all non-existent/broken pages to the home page. This was especially common for redesigns of websites where garbage pages created by other agencies were unwanted. The rationale is that if someone comes across one of these abandoned pages via search results, the home page would be a better welcome/entrance than a 404 page.
Picking a domain name is one of the first things you have to do to become a website owner. It’s how users remember your website and it’s largely permanent. You can go through the hassle of changing your domain name, but it’s best to get it right the first time.
The key takeaway from this report is that more vulnerabilities doesn’t necessarily mean more attacks. Given WordPress’s large and increasing footprint, it isn’t that far-fetched to expect more vulnerabilities. Just think of all the plugins and themes out in the wild. How many of those have been abandoned? Furthermore, how many websites sit idle, not receiving updates for months or even years.
Although the sample size of my overall tracked keywords is relatively small, it does appear that some sort of change happened. In fact, it’s possible that changes are still going on. It might take a week or so before things stabilize.