- Company Blog -
13 Jun
2013
After the success of our first webinar series on Joomla speed and SEO, we received numerous requests to organize sessions about Joomla security – extremely hot topic, especially after the recent spike of hack attempts. We didn’t wait long and partnered with our good friend Nicholas Dionysopoulos from Akeeba Backups for our second webinar series on Joomla security and backups.
7 Jun
2013
Lately, we have added some fancy new features for Joomla and WordPress users and you might be wondering what’s next in our queue. We intend to add such features for other popular applications on our servers as well. So the good news this week is that our Drupal users can enjoy Drush 6.0 preinstalled on our servers!
19 Apr
2013
I am extremely happy to report that our first webinar about Joomla speed was a great success – we had a very big crowd of people showing up, loads of questions in the end, and excellent feedback from our attendees!
18 Apr
2013
In the light of the recent botnet brute force attack, yesterday our very own CEO Tenko was invited by the quickly rising Joomlabe.at podcast of our friendly host and passionate SG ambassador Peter Bui.
Tenko tells us how old he was when he got his first computer, why our philosophy about technology and innovation is different, and goes into the depths of the brute force attacks and what’s their target – you’ll be surprised – it’s not your website. Make sure to listen until the very end of the episode; Tenko shares some quite useful tips and tricks on how to remain safe and protected from similar attacks.
Oh, and by the way, if you haven’t subscribed to the podcast yet, make sure to do it and stay up to date with the latest developments in the Joomla world!
15 Apr
2013
We’ve been thinking for quite some time now what will be a cool way to extend our resources and help you get your websites and business up and running, and here we are – starting a fresh educational initiative through webinars. We’ve got some of our partners excited about this idea too and will cooperate with them to bring you first hand experience and knowledge on the nitty-gritty of setting up and running an online business.
10 Apr
2013
At the time we post this there were not many official statements made by other web hosts, now more than 24 hours later we have seen several official statements how other approach the problem, and we would like to turn your attention to the fact that the solution to the Global WordPress brute force attack, proposed by the majority of the other hosts has some serious limitations. It is based on editing .htaccess files. We believe that this is only a partial fix to the problem. If your host relies only on .htaccess rules to stop the attackers, they actually allow them to reach your server, make requests, process those requests, check whether they should be blocked and then finally reject them. All that causes server load and makes your site slower, even if the brute-force attempt is stopped. Last but not least, this causes problems for the people who don’t know about the attack and only see themselves unable to access their sites.
We at SiteGround have taken a different approach preventing attackers from even reaching the server. This means that no load is caused on the server, no sites are slowed down and all targeted sites are protected in a way that most of our customers won’t even notice the attack!
It seems spammers and hackers didn’t get much sleep the last few weeks. We’re seeing an abnormal amount of hacking and bruteforce attempts towards Joomla and WordPress sites the last two and a half weeks. Additionally, the popular WordPress plugin Social Media Widget was reported to have suddenly started to insert hidden spam SEO links. Solving these problems immediately became our security team’s goal number one. There were some easy solutions like fully restricting the access to the application login forms for the time of the attacks and forceful removal of all faulty plugins. We saw other hosts take these actions. However, we do not like easy security solutions that make customers feel punished, while other people are the real wrong-doers. Guided by this belief we once again solved the problems in our own way – efficiently and at the same time user-friendly.
24 Jan
2013
Few days ago our security team has come across a JCE related vulnerability that has the potential to affect many Joomla 1.5.x based websites. The problem is that an old version of one of the JCE addons called ImageManager has turned vulnerable to attacks. The number of the affected websites is big, because many templates providers include the JCE editor together with ImageManager as part of their template bundle installations. So many Joomla users have these extensions without having installed them themselves.
28 Dec
2012
On this year’s Christmas day, many WordPress users were quite unpleasantly surprised by a vulnerability in the popular W3 Total Cache plugin. The issue was a serious one, allowing the attacker to get access to sensible information from the WordPress database including password hashtags, usernames and much more. This meant that an experienced hacker could get full access to your site, download your personal information from it, change its looks, include malicious code, add backdoors for future access and much more bad things, you wouldn’t want to experience. Sounds scary? Not if you host with SiteGround!
Read More…
Latest Comments