We all know that we shouldn’t click on links from sketchy looking emails. But what if the website you’re viewing takes you to a spoofed page at the Apple ID store and asks for your login information to proceed? This tactic is called phishing, and attacks are exponentially on the rise. Used by hackers to More Info »
Archive | Security
RSS feed for this sectionAdvancing Privacy Protection with the GDPR
A game-changer The road towards implementation of the new European GDPR (the General Data Protection Regulation) has been a long one, even though public awareness of its impact, especially outside of Europe, is only now really starting to take hold. This game-changing piece of EU legislation will require companies to fundamentally change how they process More Info »
App Highlight: Hardenize
Hardenize is a comprehensive security tool that continuously monitors the security and configuration of your domain name, email, and website. Ivan Ristić, the author of Hardenize, gave a demo of his app at our Cloudflare London HQ. Do you know how secure your site is? View a Hardenize report on your website by clicking this More Info »
Broken packets: IP fragmentation is flawed
As opposed to the public telephone network, the internet has a Packet Switched design. But just how big can these packets be? CC BY 2.0 image by ajmexico, inspired by This is an old question and the IPv4 RFCs answer it pretty clearly. The idea was to split the problem into two separate concerns: What More Info »
Personal Security Guide – iOS/Android
We’ve covered a lot of personal security practices, but many people forget how important it is to secure mobile devices, which are riddled with personal information. Website owners should consider how their entire digital life can impact the security of their website and visitors. If your phone is compromised, website access can be impacted through More Info »
Decoding Complex Malware – Step-by-Step
When cleaning websites, one of the most complicated parts of our job is ensuring we find all backdoors. Most of the time, attackers inject code into different locations to increase the chances of reinfecting the site and maintaining access for as long as possible. Our research finds that in 67% of the websites we clean, More Info »
How to Restore Website Backups from the Command Line
Earlier this week we wrote about how to use command line tools to back up your website. Check our our previous article for details on how we create these backups. In case the worst happens, you might need to restore your backup. No worries. We can easily do this from the command line too! Basically, More Info »
How to Create Website Backups Using Command-line Tools
Creating website backups should be one of the most important recurring tasks for a website administrator, and yet backups are often forgotten when thinking about website security. Creating backups using command-line tools are available to all Linux/Mac users for free. If you’re not on Linux/Mac, we have step-by-step guide on how to create website backups More Info »
Setting Expectations For Your Website Security
I have a website. Sweet! What happens next? Well, it’s a natural question. I had a brilliant idea and purchased a domain name, but what do I do next? Storks don’t fly by to deliver a basket of tasks upon the purchase of your domain. For most new website owners, a core understanding of expectations More Info »
Register My Backdoor – Unorthodox Invocation Mechanisms
Backdoors are found in 72% of infected websites, according to our latest reports. Backdoors are files left on the server by attackers in order to retain access to your site and reinfect it later, whenever they see fit. From time to time we come across unique backdoors that don’t involve the usual PHP functions like eval, More Info »
