508-909-5961 [email protected]

Although WordPress is more secure than it used to be, outdated installations can be a potential threat to your website and the data that is hosted on the servers. In an attempt to shut down hackers before they can exploit vulnerabilities, the WordPress security team recently rolled out a new version that patches security loopholes […]

05 Jul, 2016 / by Complete Technology Resources / in Security category

Security_2016_July_5_BAlthough WordPress is more secure than it used to be, outdated installations can be a potential threat to your website and the data that is hosted on the servers. In an attempt to shut down hackers before they can exploit vulnerabilities, the WordPress security team recently rolled out a new version that patches security loopholes and fixes several known bugs. Read on to find out more about the update.

What’s new in WordPress 4.5.3?

The latest WordPress version includes fixes for more than two dozen critical vulnerabilities, including:
  • Redirect bypass in the WordPress customizer API
  • Two separate cross-scripting problems via attachment names
  • Information disclosure bug in revision history
  • Denial-of-service vulnerability in the oEmbed protocol
  • Unauthorized category removal from a post
  • Password change by stolen cookies
  • Some less secure sanitize_file_name edge cases
All vulnerabilities were found by members of the WordPress community. In addition to the security issues listed above, WordPress 4.5.3 fixes 17 maintenance issues from its predecessors 4.5, 4.5.1 and 4.5.2 (See full list).

WordPress update process

Many sites have an automatic background update, meaning that website admins will receive an email, confirming the update. If your website doesn’t support this feature, you can trigger manual updates by logging in to your WordPress dashboard and click on the ‘Please update now’ link, which is clearly visible on the top of the page.

Before you perform the update, however, we highly advise you to make a backup of your website. This is so that you can quickly restore your site in the event that something goes wrong. Once you have your backup ready, you can go ahead and update your site with the push of a button. Alternatively you can download WordPress 4.5.3 here and install it via File Transfer Protocol (FTP).

It’s important to update to the newest versions of WordPress to ensure that you have access to all of its functionalities and to keep your data and website visitors safe from potential security threats. Google will also demote websites that are running old versions of WordPress in its search results pages - all the more reason why you should regularly check for WordPress updates. If you have any questions about WordPress security, feel free to get in touch with our experts today.

Published with permission from TechAdvisory.org. Source.

Read More

The Internet is a powerful platform that brings people together on a global level while giving them access to a wealth of information anytime they please. With the good, comes the bad - some utilize their skills in committing cyber crimes from the comfort of their own homes. Case in point, the recent Cerber ransomware […]

04 Jul, 2016 / by Complete Technology Resources / in Office, Security category

Security_Aug31_CThe Internet is a powerful platform that brings people together on a global level while giving them access to a wealth of information anytime they please. With the good, comes the bad - some utilize their skills in committing cyber crimes from the comfort of their own homes. Case in point, the recent Cerber ransomware attacked that ravaged millions of Microsoft Office 365 users worldwide. Here’s what a security expert and Microsoft had to say about the matter:

Steven Toole, a researcher for the cloud-security firm Avanan, detailed that his company experienced the first attack at 6:44 a.m. on June 22nd. Another interesting fact is that at least 57 percent of all Microsoft Office 365 customers on Avanan’s platform received at least one phishing attempt that contained the infected attachment. While Avanan did extrapolate the number of Office 365 users involved, the exact number has yet to be revealed.

This is particularly interesting since according to Microsoft’s first quarter reports in 2016, there are over 18.2 million Office 365 subscribers worldwide. On top of the global scale in which the attacks took place, it took Microsoft over 24 hours for the attack to be detected and for any attempts to block the attachment to be made.

Microsoft’s side of the story shares many similarities with slight differences on the detection and actions made about the ransomware attack. In an email to SCMagazine.com, the spokesperson wrote:

"Office 365 malware protection identified the attack and was updated to block it within hours of its origination on June 22. Our investigations have found that this attack is not specific to Office 365 and only a small percentage of Office 365 customers were targeted, all of which have been protected."

The point is Office 365 was compromised, regardless of how quickly it was detected - many people were asked for a ransom and were told that their files have already been encrypted. Still wanting to come across as polite, the ransom came with an audio recording that detailed what the attack was and what measures must be taken in order to regain access to the files. The unknown attacker asked for a ransom of 1.4 bitcoins or an equivalent of $500 in exchange for the decryption key.

Toole noted that “This attack seems to be a variation of a virus originally detected on network mail servers back in early March of this year," He also added that "As it respawned into a second life, this time Cerber was widely distributed after its originator was apparently able to easily confirm that the virus was able to bypass the Office 365 built-in security tools through a private Office 365 mail account.”

This proves that cyber criminals go to great lengths to not only use their tools but to improve on them and eliminate flaws. So no matter how many firewalls, passwords or fire-breathing dragons you have to guard your servers and networks, without the right network security measures in place, chances are they’ll manage to find a way to overcome the hurdles and wreak whatever havoc they can.

Network security isn’t something to be taken lightly, if you are unsure about how safe or how capable your systems are in fending off cyber threats - get in touch with us. Our experienced and friendly staff will help you with any ransomware or security-related issue you have.

Published with permission from TechAdvisory.org. Source.

Read More

If the name wasn’t clear enough, ‘bloatware’ is unnecessary manufacturer software that comes preloaded on new hardware. Just about no one likes it, and now Microsoft is giving us a tool to trim the fat. It may seem like small potatoes to anyone who hasn’t spent an afternoon removing apps one by one, but for […]

01 Jul, 2016 / by Complete Technology Resources / in Windows category

2016July1_Windows_BIf the name wasn’t clear enough, ‘bloatware’ is unnecessary manufacturer software that comes preloaded on new hardware. Just about no one likes it, and now Microsoft is giving us a tool to trim the fat. It may seem like small potatoes to anyone who hasn’t spent an afternoon removing apps one by one, but for the rest of us it’s a welcome blessing. Let’s take a minute to examine Windows’ new tool a little more closely.

If this software isn’t trying to drive you back to the manufacturer's sales stream, it’s paid a hefty chunk of change to be included on off-the-shelf hardware. Regardless of which it is, it’s not there to help you -- it’s there solely to increase the manufacturer’s bottom line. So if you think bloatware just isn’t enough of a concern to waste time refreshing your Windows install, consider that PCs without it start up 104% faster, shutdown 35% faster and have approximately 30 more minutes of battery life.

Because this isn’t a new problem, we’ve seen similar removal tools in the past, but they didn’t offer the same level of usability. When using Windows 8’s ‘Refresh and Rest’ the bloatware either wasn’t removed, or if it was, Windows required the reentry of a license key and a lengthy install completely from scratch. ‘Refresh’ Windows swiftly replaces everything on your hard drive with a fresh version of the OS as if it came straight from Microsoft.

Although this tool is best suited for clearing unwanted programs off of your machine right after you’ve purchased it, there’s no reason that you can’t use it further down the road. You might be thinking, “No way, I’ve got way too much important information to sacrifice it all just for a clean install.” Well depending on the extent of your data, that isn’t a problem.

When you open the ‘Refresh Windows’ client there’s only one option you need to select before moving forward, ‘Keep personal files only’ or ‘(Keep) Nothing’. Selecting the former will keep everything stored in your ‘Music’, ‘Pictures’, ‘Videos’ and ‘Documents’ folders. Remember that documents (in these folders) created or edited using Microsoft Office will be kept but the Office suite itself will be removed. Make sure you still have the licenses and installation disks for every piece of software you plan to use after the refresh.

This new feature will accompany next month’s Windows update, but users who just can’t wait to squash annoying ‘crapware’ can find the tool here. Simply download, open, and choose if you want to keep any personal files -- one, two, done.

You may be able to adequately navigate your way around a Windows machine, but there are often shortcuts that insiders use to speed up otherwise mundane management tasks. For any Windows projects or problems you have, drop us a line, we’ll have them fixed faster than you can uninstall that CD-burner utility that you never asked for.

Published with permission from TechAdvisory.org. Source.

Read More

“Double-tapping” is a phrase used to describe the liking of photos on Instagram, as a business you’d want to get as many double-taps as you can, but how? Should you invest in buying followers or start an excavation project in search of the genie lamp your parents buried in the backyard? Before breaking out the […]

30 Jun, 2016 / by Complete Technology Resources / in Uncategorized category

2016June30_BusinessIntelligence_B“Double-tapping” is a phrase used to describe the liking of photos on Instagram, as a business you’d want to get as many double-taps as you can, but how? Should you invest in buying followers or start an excavation project in search of the genie lamp your parents buried in the backyard? Before breaking out the shovels, try these recently-announced tools to help make your company’s presence on Instagram a valuable one:

Business profile pages

Previously, it was hard for Instagram users to distinguish an account belonging to a business from one that is dedicated to cats, but with the Business Profile feature, that’s a problem of the past. By taking advantage of this, you are giving customers directions to your business with just one tap - and on top of that, you can also establish a contact call to action with choices that include: text message, phone call or email.

The posts themselves are identical to those from other accounts, but as previously mentioned, the major difference is the account’s profile page itself. Especially when customers are given directions and various channels for communication with just a single tap. This fills in the void many business owners experience: converting the interest sparked on Instagram and converting it into action.

For example, if you stumble upon something you like on the page of a clothing boutique, you’ll be able to initiate contact with a single tap to inquire or to make a purchase.

Insights

Inspired by Twitter and Facebook, Instagram will now offer analytical data that tracks how the content is performing. Business owners will get to see reach and impressions data along with demographics (ex. On location and age) for each post.

This data won’t be available on Instagram itself, to access it you’ll need a business Facebook page that is linked to the Instagram account. By analyzing user demographics and behavioral data, you’ll be able to create Instagram content geared towards users that are more likely to engage with it.

Promote, promote, promote

Both the Business Profile and Insight features are free, but companies with a generous advertising budget can utilize the Promote feature to enhance top-performing posts through paid advertisements. Instagram will also suggest which posts should be promoted, and you can use the data gathered from Insights to designate top-performing posts based on your target audience.

Plus with customizable targeting options, you are in control of how little or how much you want your content promoted. Promoted content also comes with a call-to-action embedded in the post, for example: triggering a phone call or redirecting traffic to your website.

Both Instagram and Snapchat are emerging as the most popular social media platforms to date, and before these features are released later this year, you should consider establishing an Instagram presence for your business as soon as possible. For any further questions, feel free to contact us. #wereheretohelp

Published with permission from TechAdvisory.org. Source.

Read More