Top

What makes a safe password generator and how to get started with one

Countless password generators exist in the market, and they all promise to deliver unique, secure and random passwords. However, according to an Andrea Rock study, consumers should be cautious and examine a password generator more closely before using it. That is because some password generators are less secure compared to others. To fully understand this, […]

Continue Reading

What is ModSecurity and why do we need it ?

For time being, the internet growth and the accompanying vulnerability are very much. So we have to implement something special security for servers. So at the current state plugin like ModSecurity is a very good option to use. To learn more about it, Lets go down.. ModSecurity is an open source web based firewall application […]

Continue Reading

WordPress Easy WP SMTP plugin <= 1.3.9 - Unauthenticated arbitrary - wp_options import vulnerability

Last week, two cybersecurity companies found a Zero-Day vulnerability in WordPress SMTP Plugin. The vulnerability is located in the new import/export functionality added in v1.3.9 of Easy WP SMTP. It lets attackers exploit the lack of capability checks in the plugin’s admin_init hook to alter any values in the wp_options table. Additionally, since the admin_init […]

Continue Reading

Remote File Inclusion (RFI)

Remote File Inclusion (also known as RFI) is the process of including remote files through the exploiting of vulnerable inclusion procedures implemented in the application. This vulnerability occurs, for example, when a page receives, as input, the path to the file that has to be included and this input is not properly sanitized, allowing external […]

Continue Reading

Malware plugin’s to WordPress (woocomerce & aksimet)

When WordPress website user account compromised, there is possibility upload plugins. We have seen new malware plugins for WordPress which are named with woocomerce and aksimet. These plugins not have anything doing with real plugins, which are woocommerce and akismet. Both of these plugins use WordPress add_action(‘init’,”) function to activate itself and ready take commands […]

Continue Reading

Configure Two-Factor Authentication for WHM/cPanel

Even if you still have a handy password for your account, you still want account to be as safe as possible. Two Factor Authentication gives you an additional layer of security when accessing your cPanel/WHM account. In this guide we will discuss how to setup, configure, and use two step authentication options within the Web […]

Continue Reading

How to Add Two-Factor Authentication in WordPress

Have you noticed that sites like Facebook and Google now give you the ability to add two-factor authentication to enhance security? Well now you can add to two-factor authentication to your WordPress site. This ensures maximum security for your WordPress site. In this article, we will show you how to add two-factor authentication to the […]

Continue Reading

Technology & Development partnership with OpsShield (cPGuard)

Malware.Expert a leading provider well-known for Commercial WAF rules, ClamAV Signatures for PHP and for many other projects under their hood announcing its technology/development partnership with OpsShield, an Indian based development and server management company offering security suite for cPanel servers and other security/management solutions for Linux servers. “We are very excited to join cPGuard […]

Continue Reading

WordPress Two-Factor Authentication Plugins

Most websites are created by using WordPress application because of its user friendly interface and ease of use. Nowadays updates for major web application are released more faster than ever, this situation was due to that hackers are more efficient to break every code for finding any loopholes aggressively. So if any vulnerabilities are reported, […]

Continue Reading

What is Two-Factor authentication

Two-factor authentication is an additional security layer for your Website or business helping to rescue from the vulnerabilities of a standard password-only approach.v Nowadays, It is more dangerous to use online services to store too much data in your cloud, and your credit cards are linked to accounts with retail websites. Two-factor authentication (2FA) adds […]

Continue Reading