040Hosting News

Drupal Core – Highly Critical – Public Service announcement

Drupal Core – Highly Critical – Public Service announcement – PSA-2014-003

Description

This Public Service Announcement is a follow up to SA-CORE-2014-005 – Drupal core – SQL injection. This is not an announcement of a new vulnerability in Drupal.

Automated attacks began compromising Drupal 7 websites that were not patched or updated to Drupal 7.32 within hours of the announcement of SA-CORE-2014-005 – Drupal core – SQL injection. You should proceed under the assumption that every Drupal 7 website was compromised unless updated or patched before Oct 15th, 11pm UTC, that is 7 hours after the announcement.

Spooky good Halloween Hosting Promotion

For just one week we offer 66.6% off for the first month on any new ordered

– Shared Hosting Account

– Reseller Account

– Semi-Dedicated Account

To get your 66.6% off for the first month please use coupon: halloween2014

Enjoy your Halloween with spooky good hosting !

The coupon is valid for the following locations: Amsterdam (NL), Haarlem (NL), Strasbourg (FR), London (UK), St.Louis (MO USA), Dallas (TX USA)

Amsterdam location is expanding

A few months back we announced our new servers in Amsterdam, The Netherlands and due the interest of our clients base in this location we are already expensing, additional servers have been added to this location in the past weeks.

Currently we provide the following services in our Amsterdam Datacenter:

– Shared Hosting
– Reseller Hosting
– Semi-Dedicated Hosting
– Dedicated Servers (on request only)

WordPress 4.0 is out now !

Version 4.0 of WordPress has just been released, the wordpress release is named “Benny” in honor of jazz clarinetist and bandleader Benny Goodman,  According to the WordPress team 4.0 is just another number for them after 3.9 and before 4.1, they have put a little extra polish into it. This release brings you a smoother writing and management experience we think you’ll enjoy.

Read more

Looking to get the most out of using CloudFlare?


cf-certified-partner-badge-150px-lightbackgroundsCloudflare is hosting a free live training for their customers tomorrow. The Cloudflare technical support team will share tips on how to get the most out of using CloudFlare and answer your technical questions.

Topics:

1. Creating and using Page Rules
2. Setting up the Web Application Firewall (WAF)
3. Fine-tuning your server
4. Getting the most out of web content optimization features


When: Tuesday, August 26, 9:30 – 10:00am PST

Register: https://cc.readytalk.com/r/omjfths2qxki&eom

WordPress and Drupal Updates

Please note that there are new updates for WordPress and Drupal to stop Brute Force attacks on these websites;  a security researcher revealed a new crucial vulnerability that allows offenders to launch a very effective Denial of Service attack, through a process that circumvents existing security measures.

Please make sure you have your WordPress updates to version 2.9.2 and your Drupal to either 7.31 or 6.33 (depending on which Drupal version you are running).

Want some more information check out the following blogpost on this topic.

HTTPS as a ranking signal for Google

So you are making your site to rank as high as possible in google ? please be aware of the latest HTTPS ranking change; for now it will only affect your ranking a bit, but it will become more important over time so get ready for the next big step in google’s ranking system.

From google’s webmaster central blog

Security is a top priority for Google. We invest a lot in making sure that our services use industry-leading security, like strong HTTPS encryption by default. That means that people using Search, Gmail and Google Drive, for example, automatically have a secure connection to Google.

Beyond our own stuff, we’re also working to make the Internet safer more broadly. A big part of that is making sure that websites people access from Google are secure. For instance, we have created resources to help webmasters prevent and fix security breaches on their sites.

We want to go even further. At Google I/O a few months ago, we called for “HTTPS everywhere” on the web.

We’ve also seen more and more webmasters adopting HTTPS (also known as HTTP over TLS, or Transport Layer Security), on their website, which is encouraging.

For these reasons, over the past few months we’ve been running tests taking into account whether sites use secure, encrypted connections as a signal in our search ranking algorithms. We’ve seen positive results, so we’re starting to use HTTPS as a ranking signal. For now it’s only a very lightweight signal — affecting fewer than 1% of global queries, and carrying less weight than other signals such as high-quality content — while we give webmasters time to switch to HTTPS. But over time, we may decide to strengthen it, because we’d like to encourage all website owners to switch from HTTP to HTTPS to keep everyone safe on the web.

Read their full article on Google’s Webmaster Central Blog

Prepare for the future, get your SSL certificate today

1 billion passwords exposed ?

Today in the news:

Russian hackers steal more than 1 billion passwords.

That is a lot of passwords; from this 500 million appear from e-mail accounts. At the moment of writing we do not know which companies where affected but from reports it is clear that Large and Small websites have been infected. We have no way to verify if your site is infected at the moment nor do we have any more information as currently is provided by the media. But one thing is clear; users should change their Passwords. This is an official recommendation of several national cyber security centers around the world.

Do you need to change your password ? 

If you follow good security practices you should always;

  •  change your password regularly, so now would be a good time.
  •  have non-dictionary words as a password
  •  include special characters in your password
  •  not use the same password for multiple accounts on different sites, if one gets hacked the others at least have a different password.

And where possible use a 2factor authentication system to render the passwords useless without the 2factor code from i.e. your phone. (note that for security reasons its still a very good practice to change your passwords, even when using 2factor authentication).

We will update this article if more information becomes available to us.

 

Cloudflare added a new location: Colombia

With the World Cup at an end, so too is our latest round of data center expansion. Following deployments in MadridMilan and São Paulo, we are thrilled to announce our 28th data center in Medellin, Colombia. Most of Colombia’s 22 million Internet users are now mere milliseconds away from a CloudFlare data center.

Read the full article here: http://blog.cloudflare.com/listo-medellin-colombia-cloudflares-28th-data-center

Cloudflare’s Australian Peering is expanding

In the coming weeks, connectivity to CloudFlare in Australia is going to a new level. As part of CloudFlare’s ongoing upgrades program, we established connections to three new Internet exchanges: the Megaport Internet exchanges in Sydney, Brisbane, and Melbourne. These connections doubled the number of Australian Internet exchanges we reach and marked the first exchanges outside of Sydney that Cloudflare participates in.

Want to know more about peering and the new setup of Cloudflare read their article on their blog.