Category Archives: Security

XSS Vulnerability Affecting Many Popular WordPress Plugins

Many popular WordPress Plugins are found as vulnerable according to Cross-site Scripting (XSS) due to the misuse of the add_query_arg() and remove_query_arg() functions. These are popular functions used by plugin developers to modify and add query strings to URLs within WordPress. The official WordPress Official Documentation (Codex) for these functions was not very clear and […]

Website Security Becomes Important for Google

Great news! Today Google has officially announced that using HTTPS (HyperText Transfer Protocol) is a must-have for websites. Why HTTPS Matters for SEO In addition to an SEO-friendly website structure, unique content, quality internal and external links and site speed optimization, establishing HTTPS with Secure Socket Layer (SSL) now also increases your site’s search engine […]

Sunsetting SHA-1 and Moving to SHA-2

One of the most important parts of SSL certificates’ security is the signature algorithm. The SHA-1 cryptographic algorithm, created nearly 20 years ago, is one of the most commonly used hash function for websites that are protected with SSL. SHA-1 is getting weaker every day and is frequently exposed to collision attacks in which hackers […]

We have launched Comodo SSL Certificates For Sale

We are happy to announce that we have launched Comodo SSL Certificates for sale on our product site https://www.acewebworld.com/ssl-certificates.php. Comodo SSL certificates has features like 40-bit to 256-bit encryption, 2048 bit key-size, fast issuance, unlimited reissues, unlimited server licensing, Free site seal, 14 days refund policy, minimum $10,000 warranty, most mobile devices supported, 99.3% browser […]

We have completely disabled SSLv3 support

We have completely disabled SSLv3 support and enabled TLS (1.0, 1.1, 1.2) only to work with SSL (Secure Socket Layer) encrypted communications on all shared hosting and re-seller hosting server to prevent poodle vulnerability. We also want to suggest our users to disable SSLv3 compatibility from web browser’s SSL settings if your web browsers aren’t […]

CryptoPHP – Analysis of a hidden threat inside popular content management system

INTRODUCTION While attacks using vulnerabilities on commonly used content management systems are a real threat to website owners not keeping up with updates, a new threat has been going around. Website owners are social engineered to unknowingly install a backdoor on their webserver. This threat has been dubbed “CryptoPHP” by Fox-IT’s Security Research Team and […]

How To Keep Your WordPress Site Secure

WordPress is the most popular CMS and rapid website development platform. Millions of people are now using WordPress for their site. This open-source blogging platform might be the most targeted area of hackers if you don’t know how to keep your WordPress site secure. Follow our security tips to keep your valuable WordPress site secure […]