Let’s set the scene. You’ve just moved into your company’s modern new offices. You can’t help but notice how the porcelain tiles in the reception area are gleaming under the down lighters and the company sign is sitting just right on the on the wall.
The indoor landscaping was worth the cost, you think to yourself, as you pass your smiling receptionist behind the polished wooden desk on the way to your spacious corner office. You’ve arrived, you hear your inner voice saying . . .
But your joy is to be short-lived.
WordPress is known for being one of the most popular and user-friendly website platforms available online, but this means it can also be more vulnerable to attacks than other content managed systems.
In the past few days, attacks on WordPress websites have spiked because of a vulnerability in software versions 4.7.0 and 4.7.1. The vulnerability, which is in the platform’s REST API, enables unauthenticated hackers to modify the content of any post or page within a WordPress site.
Starting this month Google will begin marking HTTP pages that collect passwords or credit cards on its Chrome browser as non-secure.
The move signals the company’s intention to help users browse the web safely and forms part of its long-term plan to mark all HTTP sites as non-secure.
The internet was brought to its knees recently following a sophisticated, highly distributed attack on Dyn, a US company that provides domain registration services.
The attack, in which some marquee websites such as Netflix, PayPal, the New York Times and Twitter were taken down temporarily, has left many wondering just how safe the internet really is and once again brought into sharp relief the importance of cyber security.