Subscribe

Topic

Security

A collection of 4 issues

Twitter's Two-Factor Authentication vulnerability

After recent reports of failures in Twitter's SMS Two-Factor Authentication functionality, a researcher discovered that texting "STOP" to Twitter's verification service disables the authentication functionality altogether. The vulnerability, verified by Information Security Media Group, means that a malicious user could spoof an account's registered phone number to disable two-factor authentication,

Magento 2 API discloses sensitive information

This week it was discovered [https://www.byte.nl/blog/magento-2-dont-forget-to-protect-your-api] that the Magento 2 API by default discloses sensitive information about your store such as product database information (hidden/disabled products, pricing rules and stock details), the otherwise obfuscated admin URL and which other storefronts are running on the

A security test for your Magento online store

If you are puzzled about all of the Magento security patches and best-practice server settings, and there are quite a few, then there is an easy check that you can do yourself that takes just a few minutes that will tell you whether your Magento store is secure. It doesn’

Hardening WordPress

If your website is built on the WordPress platform then here are some tips that will help you keep it nice and secure. 1. Change table prefix in wp-config.php to random generated. This must be done before you install WordPress unless you know how to edit your database. 2.