2016: Banner Year for Encryption

Graph showing the massive issuance of new secure/encryption certificates throughout 2016.

The Electronic Frontier Foundation (EFF) reported that the number of websites utilizing encryption (HTTPS) to secure the traffic between the browser and the web server. For the first time since the inception of the Internet, the majority (more than half) of internet traffic was encrypted! It did not matter the size: large and small websites… Continue reading 2016: Banner Year for Encryption

PHPMailer Vulnerability

PHP (PHP: Hypertext Preprocessor) Logo

A new Remote Code Execution (RCE) vulnerability has been reported on Christmas but details were only recently released. PHPMailer has already issued a patch (though they are not 100% confident in it), and WordPress (which uses PHPMailer) is considering issuing a security patch for current versions as well. The vulnerability allows the FROM address, when… Continue reading PHPMailer Vulnerability

Yet Another Yahoo! Security Issue

The Yahoo! logo that was introduced in 2013 and features dual-tone purple/violet thin-walled lettering.

Yahoo! has fixed a major security flaw. This one was with their Yahoo! Mail email service that allowed an attacker to embed JavaScript in an email and have it execute. This would allow an attacker to gain access to all of a person’s email and Yahoo! account just by them opening an infected email. How was… Continue reading Yet Another Yahoo! Security Issue

WordPress 4.7 “Vaughan” Released

WordPress Logo

WordPress (WP) has released version 4.7 of their blogging and content management software. It has been codenamed in honor of the legendary jazz vocalist Sarah “Sassy” Vaughan. Here are some of the new features: Twenty Seventeen As always, new version, new theme… Theme Starter Content When you setup a new theme with no content, the… Continue reading WordPress 4.7 “Vaughan” Released

Google Chrome 55 Released

Google Chrome Browser Logo

Google has released version 55 of the Chrome web browser (based on the open-source Chromium browser) a few days early (was supposed to be released on the 6th). There was over $70,000 paid out to security experts, developers, and white-hat hackers for finding over 25 different security-related issues with the browser. Noteworthy features: async &… Continue reading Google Chrome 55 Released

PHP 7.1 Released

PHP (PHP: Hypertext Preprocessor) Logo

PHP version 7.1 was released with a few new features and corrections. Nothing massive (like the major performance increase of version 7) was added so don’t expect hosts to make any major steps to support it. Nullable Types Function & method return types can have a question mark (?) placed in front of it to… Continue reading PHP 7.1 Released

Published
Categorized as Software Tagged

Chrome Security Update: 45.0.2454.101

Google Chrome Browser Logo

Google has released a security update for it’s Chrome web browser. The new version, 45.0.2454.101, includes fixes for a reported cross-origin bypass that affects both the document object model (DOM) parser as well as the V8 JavaScript/ECMAScript engine. It is recommended that you update your browser to this version to prevent possible exploits. You can do so… Continue reading Chrome Security Update: 45.0.2454.101

PHP 7: Release Candidate 2

PHP (PHP: Hypertext Preprocessor) Logo

The next version of the popular open-source scripting language is set to be released in early November 2015 – just a few months from time of writing! The second release candidate has been set free with a few bug and security fixes. The upcoming version includes new features such as full and consistent 64-bit support across… Continue reading PHP 7: Release Candidate 2

Published
Categorized as Software Tagged

Firefox: Stolen and Fixed

Mozilla Firefox Logo

Mozilla, an open-source software community run by the non-profit organization, Mozilla Corporation, and developers of the Firefox web browser, has announced it’s bug tracking software, Bugzilla, was hacked. The organization’s blog post states that the account that was compromised had access to privately-listed bugs representing zero-day security flaws in the browser. However, if you keep your browser… Continue reading Firefox: Stolen and Fixed