Spam is still one of the biggest inconveniences on the internet. Not only incoming spam causes problems but inadvertently sending spam or seen to be sending spam as well. Spammers regularly hack servers that are subsequently abused for sending spam. Most hacks take place because updates to websites are not installed in time or because weak passwords are cracked. We recommend you to install updates on time and apply proper password management to your environments.
Category: Site Management
Sites around the world based on Wordpress, one of the most successful Open Source CMSes, are currently experiencing abuse in the form of a bruteforce attack on the login page.
This attack consists of an overload of login attempts on the site, thereby slowing down or even disabling the site under attack. We will show you a simple way to protect your site from this brute force attack.
A critical vulnerability was found in the Ruby on Rails framework. Because of this the most Ruby on Rails sites can be hacked relatively easily. This afternoon the online system for Dutch government services [[digid.nl] www.digid.nl] was brought down for a period of time by its administrators because of this vulnerability.
Every Ruby on Rails environment with XML not deactivated is vulnerable, even if yaml-support is switched off. In the standard setup XLM is activated on these environments. The fix is upgrading the Ruby on Rails framework to one of the following versions: 3.2.11, 3.1.10, 3.0.19, or 2.3.15.