My website was once hacked by a hacker from Saudi Arabia. He managed to get into the server and replaced the index.php file with his own index file. I don’t know how he can get into my server but I have learnt many things from that bad experience.
Always upgrade your Wordpress to the latest version - It is really recommended to upgrade your Wordpress to the latest version. It is because each new version contains bug fixes and patches to vulnerabilities that exist in the older version. So make sure that you upgrade your Wordpress when the latest version is out.
Files and folders permission - In Wordpress, we need to set permission to certain files or folders to make it works properly. Especially when using plugins that need special CHMOD 777 permission. When you doing this, make sure that you give permission to the correct files and folders only. We don’t want other peoples can upload and run script through our server, right?
Read more…
There is a report saying that recent virus attacks regarding the email containing malicious PDF files are coming from servers in Malaysia and Sweden.
“The emails, sent in bulk, looked like credit-card statements, and contained an attachment called ‘report.pdf’,” chief research officer Mikko Hypponen said in a statement.
When such PDF files are viewed on vulnerable machines, they start downloading software from servers in Malaysia or Sweden, which are now being cleaned, he said. “There will be more such attacks.”
-Mikko Hypponen (F-Secure Chief Research Officer)
To prevent your PC from being infected, a new security update for Adobe Acrobat Reader has been released a few days ago. But there is a question that I want to ask, what should we do to the company who hosted the server in Malaysia? Maybe we might need to ban the provider. Because of them, Malaysia get bad reputation in security and IT field.
PDF files used to attack computers [via Colbert Low]
Turn your PC on, and you’re immediately vulnerable to malicious attacks. But you can use these free applications to minimize the dangers and protect yourself.
Preventing and Eliminating Malware
- ZoneAlarm
- Comodo Firewall Pro
- Avast
- AVG Anti-Rootkit
- Spyware Blaster
Read more…
BotVoice.A was first found by Panda Lab is the first trojan that can talk. It talk by using the built-in speech function in Windows. The trojan will repeatedly saying this message:
You have been infected I repeat You have been infected and your system files has been deleted. Sorry. Have a Nice Day and bye bye…
Download to hear the voice.
Read more…
For me as a Wordpress theme coder don’t like users to remove my link from the footer. I really hate them (not really but don’t like) when they remove my link and make like the theme was made by them. So, to protect the PHP file from being edited by the users, I have encrypted the file so they can’t edit the footer file. But, how do I do that?
I use an encoder to encrypt and lock the file. Free PHP Encoder will encrypt the source code and can only be decoded when the users request the file from their internet browsers. Although they can request the file, but they can’t modify it. Even I can’t retrieve back the source code if I lost the original file. So with this encryption, your link on the footer will be safe.
Read more…
Wordpress developer team always try to catch up and fix bugs and security issues as soon as users report it. Although the updates release frequently, whether you want it or not, you must always do the upgrade to all of your Wordpress powered sites.
Usually each upgrade has new bug fixes and security patches. So you must download the latest Wordpress version and upgrade your Wordpress after the download finished. Don’t delay the upgrade or you might will end up by getting a message by someone on your website.
But don’t think your Wordpress site is safe just because you have upgraded it to the latest version. There are many ways the attackers can do to hack or to deface your website. So you must do the database backup daily (recommended) or at least weekly.
Read more…
Just found out that one of my internet friend’s website who is a problogger got hacked today. Hong Kiat’s website was hacked by someone (no names were found on that website though). Here is the text left by the hacker.
You think ur problogger ? Think again …
You think ur too good for blog ad networks ? Think again …
You think ur blog readers love your content ? Think again …
You’re n00b! W3R3 1337s!
H4X0R3d! 0WN3D! PWND!
Read more…
It is not actually that the movie Pirates of the Caribbean 3 is a trojan but the spammed email sent to your email contains a trojan.
The spammed email promising a trailer of the film “Pirates of the Caribbean 3: At the World’s End” and the chance of free tickets. But the truth is there is no preview or free tickets but a copy of Troj/Yar-A Trojan horse attached in the email.
Read more…
I must wish my congratulations to all Firefox users because you guys are better patchers than other internet browser users.
Based on analysis by Secunia, 5.19 percent of all Firefox 2 users had missed security updates. 5.40 pecent for IE7. 9.61 percent for IE 6 users. And Opera was the most abandoned in security updates which is 11.96.
“People have to choose to use Firefox,” said Mike Cherry, an analyst with the Directions on Microsoft research firm.
Opera was the least to be patched because the updates is not done automatically instead you need to check the update by yourself by clicking on Help and Check for update. But for Firefox users, the updates are delivered via the browser itself. So, Firefox users are more secure and up to date.
More read at Techworld Computer & Internet Security News .
Firefox users are better patchers [via Techworld] [tags]firefox, opera, internet explorer[/tags]
I just got my Ubuntu CDs couple of days ago and currently I’m looking what things should I need to protect my Ubuntu that I will install once I buy a new hard disk for my PC. I want to make it dual boot. 
Luckily, IT Security (more about IT Security) had make a post about how you can protect your Ubuntu by installing must have softwares and modifying some Ubuntu configuration settings.
Here are short tips you need to do to modify the default settings.
1. Reconfiguring shared memory
Open your text editor, open the file “/etc/fstab” and add the following line of code:
tmpfs /dev/shm tmpfs defaults,ro 0 0
Read more…
