Thru current IT News you may have heard about the major Security Problem of x86 Technology.
If your Websites current hosted on VM at VM Providers, contact them to get current news about their bug handling of their VM Host Servers. If you get no details, then shutdown your sites temporarily, or look for a other solution which isn’t running on x86 Technology.
Otherwise you can try to switch from php-kits to static HTML Websites. On the Net there are very helpful tools to do this easy. For WordPress is a WP to HTML Plugin available. This dumps your blog to HTML static paket where you can use a raspberry Pi with ligttpd as litte Webserver instance up to the time the x86 Manufacter fixes the nasty problems. Remark Debian runs on other CPUs like Sparc64 Mips too..
If you use WordPress for a Company or other Organisations, you want perhaps customize the Meta Data Tags on Posts.
Most Sites on Net describe to hide all metadata, BUT this can run your CMS into Problems on Ranking, cause the Search Engines can’t pull the date of a Post.
If not current it’s pushed back to nirvana.. and your work lost value.
Solution: Show only Dates hide the Authors for wp-login.php attacks. Edit with a Texteditor the style.css of your theme and search:
If you use a Android Smartphone (other Mobile-OS same) you should take a minute to get back your privacy and security!
This points helps to prevent, but there is no warranty for 100% protection!
First every Smartphone offers a Factory Reset, search it on Settings and DO it! This prevent you from Firmware Spam by the Reseller! (Samsung, HTC..)
Boot the Phone without inserting a SIM card, create a fake account to get Updates and Software over a PUBLIC WIFI Network (Coffee Shop, Freifunk)
Install wanted Apps, then go to Settings now to accounts, PURGE the fake account.
Disable / Purge Apps on the Settings, of Apps that you never will use.
Check on Settings which App is running by timer, if not needed disable it.
Check Webbackup Apps and disable or prevent them from calling home, (Default builtin Android Firewall)
DON’T setup your REAL Email Account which is used for Home Banking or Online Shopping, CAUSE the OS is open like a Swiss Cheese with holes! (Less Updates by Manufacterer) or to PROTECT your phone from being hijacked by a E-Mail Virus
Encrypt the Phone, and SET Screenlock with Password longer than 8 Digits, same on SIM Unlock Code!
Backup the Smartphone by USB Cable Monthly to a full encrypted PC!
If you are not a newbie, look for Browsers like icecat-apk on the Open Source F-Droid Shop which are more secure
Try Tor Browser later! For more Security!
DON’T Enter words, names, numbers who are CONFIDENTIAL! Cause Smartphones are like papers on a public table without real protection!
Try to use the „Quick Switches“ of the „Screen Pull Down Menu“ of the Home Screen where Data, Autosync and Flightmode can be used.
If you use Messenger Apps check their Settings to disable Download of „Video, Images, Files“ this can be a Backdoor too!
Disable „Video Autoplay“ on Apps like G+ or Facebook.
Use every App with a own fake Account.
NEVER leave your Phone on a public table, cause the USB Port is always open and AUTO Connect every plugged in Cable!
Put a black Strip on the Camera lens if you don’t need them! especially the Front Camera!
Call your Phone Provider, to disable the transmission of MMS/SMS! This prevent Messages with bad links.
Last days there was a high count of news about the Bot Attacks against T-Com Telekom Router devices. To understand the behavior about this up comming security problems you should know following points :
Every network supported device can be a goal for a attack ( Routers, Modems, PC, Fridges,IP-TV, IP Switches, IP-Cams…)
You have to update the OS for each device monthly, if not supported by the manufacter, then dont buy!
Try to get Opensource Hardware with Opensource Software for full access (ssh / console) to have full control
Reduce the count of devices who are connected direct to the web!
If you must use a ISP Modem / DSL Router of your ISP Provider, then install a second Opensource Router with Firewall behind for more security
Use small Firewalls to seperate WIFI and LAN Networks!
DISABLE if possible „auto update“ and „ISP Remote Control“ at the DSL Router / Modem cause more and more comfort functions are hacked to break the systems.
Updates must be tested on non productive Routers!
Keep clean backups of fresh installed Routers / Modems and restore the backup every 3 month to overwrite bad possible changes!!
Connect the Routers to a clocktimer to unplug and hard reboot the Router every night! (againts RAM Hacks)
Control every month the Router logs and ISP-Settings ( IP-Phones) cause hackers want to route calls to asia!
Dont trust blind every commercial hardware! much bugs like open doors, default passwords are set!
Test your System with free tools like „nmap“ Portscan and „iftop“
Change Passwords, WIFI Passwords, Wifi-IDs! min. 12 signs