Tough Week for Security on the Internet

Have you ever had a week where you want to throw your computer in the trash?  Well, for security-minded netizens, this might have been one of those weeks.  This week has seen two major security issues surface that impact a large number of the internet’s users. Google Finds a SHA1 Collision – First blow to…

Read More

WordPress Vulnerability in the Wild

Security Company Sucuri recently announced that they had found a Content Injection Vulnerability in WordPress Core, stemming from the recently included (in version 4.7) and enabled by default WordPress API feature. The vulnerability would allow a malicious user to use the Rest API to edit pages and posts, inject shortcodes or even run PHP directly if certain…

Read More

Happy Holidays 2016

Happy Holidays! As 2016 begins to wind down, we want to take a moment to look back and thank our customers for making anHonestHost possible. During this time of year, we continue to work hard and stay vigilant in an effort to prevent issues. Our heartfelt wish this holiday is that you get to spend time…

Read More

Latest Security Alert – Dirty CoW

CVE-2016-5195, Also known as “Dirty CoW” is a Local Privilege Escalation vulnerability in Linux Kernel 2.6.22 and higher.  This impacts some of the most popular OSs like: Red Hat Enterprise Linux 7.x Red Hat Enterprise Linux 6.x Red Hat Enterprise Linux 5.x CentOS Linux 7.x CentOS Linux 6.x CentOS Linux 5.x Debian Linux wheezy Debian Linux jessie…

Read More

What is the impact of the 1Tbps DDOS on the hosting industry?

Recently, the internet passed a rather ominous milestone. Another hosting provider was attacked, with a massive 1Tbps Distributed Denial of Service Attack; the largest we have seen to date. I emphasize “to date” because almost 4 years ago, 75Gbps was considered to be pretty massive. To give an idea of the growth for DDOS attacks,…

Read More

Logging in over HTTP is bad – And Google wants you to know it

Google Chrome Security has announced that in a future release of Chrome (version 56), websites that are not secured for login pages will be flagged. This means that in future releases of Chrome you will see a change in the address bar like this: https://security.googleblog.com/2016/09/moving-towards-more-secure-web.html   And eventually,  Chrome will show: https://security.googleblog.com/2016/09/moving-towards-more-secure-web.html This is not…

Read More

Dropbox 2012 Hack – Over 60 Million Log-ins Compromised

I remember seeing the news.  I remember getting the email. Dropbox had been compromised back in 2012, and at the time, they said it was a good idea to change your password, you know… because it’s best practice… and stuff… This was just a year before the dreaded Adobe Hack that got tons of people…

Read More

“Why Not?” Why we don’t offer ‘Unlimited Plans’

“XYZ host offers Unlimited Plans, why don’t you?” That is actually a common statement our sales team hears, and it shows the fruits of years of marketing. To get into why we don’t offer unlimited plans, some history needs to be shared.  When the internet was just starting out, very few ‘normal’ people had their own…

Read More

Help! How should I protect WordPress?

WordPress is one of the most popular CMS available currently (holding 51% of the total websites on the Internet According to BuiltWith.com) From http://trends.builtwith.com/cms It is easy to see why WordPress is so popular when you look at how frequently the core is updated, the great community of developers and users, and the large plugin repository.…

Read More

Help! My website’s Emails aren’t getting received!

You have worked REALLY hard to make your new website. You did all the right things.  You put meaningful content in and made match your vision. It looks awesome. It runs great.  It should be entered into the hall of fame for greatest website of the year. But there is a problem lurking underneath… Dun Dun…

Read More