vulnerability Archives - OmniSOS - Elite WordPress Security https://omnisos.com/tag/vulnerability/ Shielding Attacks, Thwarting Intruders, Saving Your Site! Wed, 29 Oct 2014 17:21:18 +0000 en-US hourly 1 What exactly is Malware? https://omnisos.com/kb/malware/ https://omnisos.com/kb/malware/#respond Tue, 28 Oct 2014 22:22:18 +0000 http://omnisos.com/?p=555 Malware (Virus) is a very broad term, and there are many different ways that malware can be injected into a website. One common way that malware is inserted is by...

The post What exactly is Malware? appeared first on OmniSOS - Elite WordPress Security.

]]> Malware (Virus) is a very broad term, and there are many different ways that malware can be injected into a website. One common way that malware is inserted is by a File Inclusion vulnerability. With this vulnerability, the hacker will insert a malicious script into the site by editing the PHP. This is normally performed by using methods similar to Code Injections. As a result, creating secure user input validation will also mitigate this vulnerability, along with coding the PHP to eliminate the possibility of Remote File Inclusion (RFI). Malware can also be inserted by gaining login access, so many other security measures must be taken to mitigate this risk. Oftentimes, the hacker’s goal is to insert malware, no matter what vulnerability he/she is using to gain access.

The post What exactly is Malware? appeared first on OmniSOS - Elite WordPress Security.

]]> https://omnisos.com/kb/malware/feed/ 0 What is a Brute-Force Attack? https://omnisos.com/kb/brute-force/ https://omnisos.com/kb/brute-force/#respond Tue, 28 Oct 2014 22:08:48 +0000 http://omnisos.com/?p=549 Brute-Force attacks (also called an Exhaustive Key Search) are used with the intention of gaining access to the server or website by guessing the login authentication. Hackers who use this...

The post What is a Brute-Force Attack? appeared first on OmniSOS - Elite WordPress Security.

]]> Brute-Force attacks (also called an Exhaustive Key Search) are used with the intention of gaining access to the server or website by guessing the login authentication. Hackers who use this method typically have several computers with very fast hardware which use an algorithm to guess the password. These machines can guess thousands to millions of passwords per minute, and they will typically guess every possible password. This can be a very dangerous attack if security measures are not set up properly. The best way to prevent a successful Brute-Force attack is to prevent access to the login page after a certain amount of failed login attempts (implemented into most firewalls), to have a strong, secure password, and to set up two factor authentication. Two factor authentication uses a password, and also sends a verification code to the user’s cell phone. This makes it virtually impossible for Brute-Force attacks to be successful.

The post What is a Brute-Force Attack? appeared first on OmniSOS - Elite WordPress Security.

]]> https://omnisos.com/kb/brute-force/feed/ 0