As we all know, widely used can also end up being widely abused. When looking after customer sites we have to be extra vigilant when it comes to opensource apps like Wordpress due to number of exploits both old and new
How many old plugins are running on your client sites ready and waiting to be exploited? It is not a case of if but when, nefarious scans find your clients site. What usually follows is a comprehensive exploit scan against it which 9/10 means access being obtained not only to the targetted site but potentially every other site on your server
Are you really prepared for when the "you know what" hits the fan?
One of our most important defences against such attacks is the implementation of app isolation to prevent system exploits propogating across multiple sites. Every single customer site should be contained within it's own environment much like a docker container, this environment should allow native performance while preventing unauthorized processes being launched should the site be broken into
The Linux OS provides core support for application isolation within it's Kernel which is the main reason to NEVER host your opensource based app/site on something like Windows/iiS
Think back to the last time you had to yet again restore a customer site due to an exploit...
Let us know via Twitter about the last time you had to deal with a site hack and how you think they got in
Tuesday, June 12, 2018