On the anniversary of the first email transmission, we look at how email has evolved over the years, and how to keep it as an essential tool going forward, despite the growing and increasingly sophisticated dangers of e-mail-based malware and other email-borne threats. What some consider to be the first Continue Reading

What’s new in ISPConfig 3.1.1p1 This release patches an issue in the Nginx vhost master template /usr/local/ispconfig/server/conf/nginx_vhost.conf.master which caused a wrong path for Let’s Encrpyt certificates to be set in the vhost. The issue affects ISPConfig 3.1.1 installations with Nginx only. Systems with Apache are not affected and do not Continue Reading

Click install MySQL from the Webuzo Library. MySQL is an open source relational database management system (RDBMS) that runs as a server providing multi-user access to a number of databases. Review , Rate and View Demo of MySQL here:http://www.webuzo.com/sysapps/databases/MySQL56

Click install MySQL from the Webuzo Library. MySQL is an open source relational database management system (RDBMS) that runs as a server providing multi-user access to a number of databases. Review , Rate and View Demo of MySQL here:http://www.webuzo.com/sysapps/databases/MySQL

Click install Nginx from the Webuzo Library. Nginx does mot rely on threads to handle requests. Instead it uses a much more scalable event-driven (asynchronous) architecture. This architecture uses small, but more importantly, predictable amounts of memory under load. We have also updated OpenSSL to 1.0.1u and its related libraries. Continue Reading

WordPress 4.7 Beta 1 is now available! This software is still in development, so we don’t recommend you run it on a production site. Consider setting up a test site just to play with the new version. To test WordPress 4.7, try the WordPress Beta Tester plugin (you’ll want “bleeding Continue Reading

Joomla, a popular free and open-source content management system, just released version 3.6.4 that fixed two critical vulnerabilities: [CVE-2016-8870] – Core – Account Creation: attackers can exploit this vulnerability to create any account in a Joomla system regardless of whether its registration has been disabled. [CVE-2016-8869] – Core – Elevated Continue Reading

Project: Joomla! SubProject: CMS Severity: High Versions: 3.4.4 through 3.6.3 Exploit type: Account Modifications Reported Date: 2016-October-26 Fixed Date: 2016-October-25 CVE Number: CVE-2016-9081 Description Incorrect use of unfiltered data allows for existing user accounts to be modified; to include resetting their username, password, and user group assignments. Affected Installs Joomla! CMS versions 3.4.4 Continue Reading

Cars are an essential part of our everyday life, and are crucial for transporting millions of commuters through towns and cities, and even from one country to another, on a daily basis. With “smart” vehicles increasingly playing a major role in our day-to-day lives, it’s no surprise that semi- and Continue Reading

Distributed Denial of Service (DDoS) attacks happen when vulnerable internet-connected devices are compromised by malware and used as bots in a DDoS attack. This advisory provides information on DDoS attacks, and how members of public can protect themselves from inadvertently aiding such an attack. On October 21, 2016, there was Continue Reading

“If you want to change the world, start by changing your briefs”.The slogan says a lot about the identity and reputation of Le Slip Français, known for their made-in-France briefs — but not just that! Le Slip Français was launched through PrestaShop by Guillaume Gibault five years ago, and has Continue Reading

RSS: MailEnable Version 9.51 Release MailEnable version 9.51 for Standard, Professional, Enterprise and Premium Editions is available for download from the MailEnable Web Site. The following change list outlines changes in version 9.51: RECENT CHANGES ADD: Migration Centre now allows importing of Contacts and Appointments via CalDAV and CardDAV ADD: Continue Reading

Recently we received a SPAM with an attachment, which is a password-protected Word document. Its MD5 is 6619356e9e0c9d2445bf777a8bea5d6a, which is detected as “WM/Agent.60F9!tr” by the Fortinet AntiVirus service. When the document is opened, the attached malicious VB script code is executed and additional malware is created and executed. Based on Continue Reading

This tutorial shows the installation of an Ubuntu 16.10 (Yakkety Yak) web hosting server with Apache2, Postfix, Dovecot, Bind and PureFTPD to prepare it for the installation of ISPConfig 3.1. The resulting system will provide a Web, Mail, Mailinglist, DNS and FTP Server. https://www.howtoforge.com/tutorial/ubuntu-perfect-server-with-apache-php-myqsl-pureftpd-bind-postfix-doveot-and-ispconfig/

We are excited to announce the release of CubeCart 6.1.0 which comes with a number of great new features.  What’s New? Dashboard notifications for extension updates (see upgrade notes). Font Awesome replaced with SVG in Foundation skin for optimisation with smaller page loads (up to 107KB smaller). SVG support for logo. Redis cache support. Continue Reading

Dirty COW (CVE-2016-5195) Dirty COW (CVE-2016-5195) is a privilege escalation vulnerability in the Linux Kernel. A race condition was found in the way the Linux kernel’s memory subsystem handled the copy-on-write (COW) breakage of private read-only memory mappings. An unprivileged local user could use this flaw to gain write access Continue Reading

Fortinet researchers recently discovered two critical zero-day vulnerabilities in Adobe Acrobat and Reader. They are identified as CVE-2016-6939 and CVE-2016-6948. Adobe released a patch to fix these vulnerabilities on October 6, 2016. CVE-2016-6939 This vulnerability was discovered by Kai Lu. CVE-2016-6939 is a heap overflow vulnerability. The vulnerability is caused by Continue Reading

A Joomla! 3.6.4 release containing a security fix will be published on Tuesday 25th October at approximately 14:00 UTC. The Joomla! Security Strike Team (JSST) has been informed of a critical security issue in the Joomla! core. Since this is a very important security fix, please be prepared to update your Joomla! Continue Reading

We’re traveling around the world and having the pleasure of meeting so many of you. This month we’re proud to present many changes that have been highly requested both in person and on our issue tracker. You’re now able to create multiple issue boards and quickly create issues from them. Continue Reading

SUMMARYcPanel, Inc. has released updated RPMs for EasyApache 4 on October 19, 2016, with PHP versions 5.6.27 and 7.0.12. This release addresses vulnerabilities related to CVE-2016-7568. We strongly encourage all PHP 5.6 users to upgrade to version 5.6.27 and all PHP 7.0 users to upgrade to version 7.0.12. AFFECTED VERSIONSAll Continue Reading

This award is a great honor to all of us here at ownCloud. It is our users who have made it possible and we can’t thank you enough for your continued devotion to ownCloud. So let’s keep going and rack up some more awards! Love to all, From the ownCloud Continue Reading

In the post “Home Routers – New Favorite of Cybercriminals in 2016”, we discussed the active detection of vulnerability CVE-2014-9583 in ASUS routers since June of this year.  In this post we will dissect a bot installed on the affected ASUS routers. The following figure shows attack traffic captured through Continue Reading

by ownCloud GmbH posted on Thursday, October 20th, 2016 posted in General As in 2015, ownCloud was also present at this year’s it-sa 2016 in Nuremberg, Germany. The it-sa is an annual IT-Security exhibition featuring important organizations from the industry and a highly targeted IT security audience. ownCloud was not Continue Reading

Do you hear the sound of jingle bells? Yes… the countdown to the 2016 holiday season has started and so have PrestaShop #JingleDays ! From November through January, we’re here to help you during the busiest online shopping season of the year! We know the next few weeks will be very busy for Continue Reading

Fortinet has discovered a new open-source PHP ransom malware that has been targeting web sites using a simple encryption algorithm that is effective enough to really frighten web server owners. What is more interesting, however, is the information we have uncovered regarding the possible roots of the attacks/attackers. Basing only Continue Reading

“The cloud,” a word that used to cause network folks to roll their eyes, is now a reality. Public cloud architectures are quickly becoming the backbone, no pun intended, of the corporate IT infrastructure. There are some compelling reasons for this. The first that comes to most people’s minds is Continue Reading

Hi, The Webuzo Team has released Webuzo 2.4.9. This version introduces a domain addition fix.The following is a list of all changes : 1) [Feature] You can now view and edit Exim configuration file from the panel itself. 2) [Feature] Mail client details can be now viewed on Email accounts Continue Reading

As part of Fortinet’s continued efforts to protect its customers, we carry out a variety of tests to improve the detection of malicious content, whether it’s file or network related. While checking out some HTTPS phishing websites last month, one URL stood out. It wasn’t a phishing site, but it Continue Reading

Fortinet recently sat down with Fabric-Ready Partner Tufin to learn what’s top of mind for its customers, the key IT challenges they are facing, and how Tufin’s approach to integrated security is helping drive business and customer success. Tell us a bit about Tufin’s business and the types of customers Continue Reading

Accelerated Mobile Pages (AMP) is a great way to make content on your website accessible in an extremely fast way. To help ensure that your AMP implementation is working as expected , Search Console now has an enhanced AMP testing tool. This testing tool is mobile-friendly and uses Google’s live Continue Reading

Fortinet is highly committed to the public testing of its products and solutions because it helps us to continuously improve our products and provide the best technology to our customers. We participate in dozens of tests across a spectrum of labs and approaches.  In the most recent NSS Labs Next-Generation Continue Reading

The trust of our users is ISRG’s most critical asset. Transparency regarding legal requests is an important part of making sure our users can trust us, and to that end we will be publishing reports twice annually. Reports will be published three months after the period covered in order to Continue Reading

The Let’s Encrypt root key (ISRG Root X1) will be trusted by default in Firefox 50, which is scheduled to ship in Q4 2016. Acceptance into the Mozilla root program is a major milestone as we aim to rely on our own root for trust and have greater independence as Continue Reading

Let’s Encrypt is happy to announce full support for IPv6. As IPv4 address space is exhausted, more and more people are deploying services that are only reachable via IPv6. Adding full support for IPv6 allows us to serve more people and organizations, which is important if we’re going to encrypt Continue Reading

In the GitLab Master Plan, we promised to ship the entire development lifecycle before the end of the year. GitLab 8.12 is exciting because it brings us one step closer to realizing our vision to be an integrated set of tools for the software development lifecycle. In this release, we Continue Reading

We’re into the final quarter of the year, and the cyberthreat landscape continues to be interesting. This week in the Fortinet Threat Intelligence Brief we looked at a number of interesting trends around IoT botnets, continued ransomware problems – both through directed attacks and infected websites, and the spoofing of Continue Reading

There was a time in the healthcare industry when the pulse oximeter was considered by many to be the most technologically-advanced product on the market. This device was designed to measure the oxygen saturation of blood and was not connected to wireless networks. Times have changed. Fast-forward to today, and Continue Reading

Updated CentOS Vagrant Images Available (v1609.01) Thursday , 6, October 2016 Laurențiu Păncescu announcement Official Vagrant images for CentOS Linux 6 and CentOS Linux 7 for x86_64 are now available for download, featuring updated packages to 30 September 2016, as well as the following user-visible changes: the centos/7 image now uses Continue Reading

How does an application configure its database connection?  I find this to be a pretty interesting question. As the application moves from a developer’s workstation to a test harness, then to staging, and on to production, the database connection properties can change each time.  What’s more, a separation of responsibilities usually Continue Reading

A previous blog post exposed the main factors affecting Group Replication performance, which was followed by another that showed the scalability of both single-master and multi-master throughput. In this post we return with more “inside information” that may be useful for optimizing the performance of Group Replication deployments. 1. End-to-end Continue Reading