Hello,
The Wordpress team has released a major vulnerability affecting all previous versions of WordPress 4.5.2 :
https://wordpress.org/news/2016/05/wordpress-4-5-2/
You are required to update your site in the months from that day !!!
All wordpress websites not updated July 31, 2016 will be suspended! so make your arrangements now
We have already found one website hacked, and that was used to make fishing on a fake login page of Yahoo
Details :
files named mail.html and shopping.html were found in these folders :
/wp-includes/
/wp-content/
We are going to launch a server scan in user accounts to identify these similar files, there may exist others with different names...
(there is nothing to confuse with server security, this is only a website security issue in wordpress)
If necessary hire a webmaster :
https://support.yoorshop.hosting/knowledgebase/1130/Where-to-find-a-webmaster.html
Use Wordfence temporarily to do a scan, it is very convenient to detect if system files of your wordpress are already compromised.
Reminder about the Ninja firewall security plugin to install once your site updated
https://support.yoorshop.hosting/knowledgebase/1302/MANDATORY-security-measures-for-WordPress-to-apply-on-our-servers-.html
Tired of WordPress ?, we too !
There are alternatives:
https://www.yoorshop.hosting/en/301/web-hosting-zenario-softaculous.html
https://www.yoorshop.hosting/en/308/web-hosting-Clipper-CMS-softaculous.html
https://www.yoorshop.hosting/en/71/web-hosting-QuickCMS-softaculous.html
Thanks for your understanding
The YOORshop direction.
Monday, June 20, 2016
