Astra Web Security Blog - Website & CMS Security News

astra, web, security, blog, website, cms, security, news

Has your browser ever taken you to a bogus tech support website without any reason? Then you are already familiar with the EITest. The EITest was the most innovative delivery campaigns which were malicious. It began in 2017 when it started redirecting users to fake tech support through Internet Explorer. It also used fake chrome fonts for multiple redirections. This…

CMS comparison for E-commerce

Features, Security & Requirement: Magento vs Opencart vs Woocommerce: An In-Depth Analysis The e-commerce world isn’t just rich with profits — it’s also rich with technological and operational possibilities. Anyone looking to create an online store has a wide array of viable solutions to choose from, ranging all the way from fully-enclosed hosted services to flexible and customizable open source…

Social Engineering Content Detected. Have you received an E-mail from Google saying that it has detected Social Engineering Content on your website? It might be because some pages on your website are hacked or include malicious third-party resources. These can be Ads, pop-ups that might trick users into installing malicious software or giving up confidential information. So to protect your…

Wordfence Deactivated

A WordPress security issue that is gaining a lot of attention and has surfaced recently is the Wordfence deactivated automatically issue. In this issue, the famous WordPress security plugin Wordfence is getting deactivated/deleted automatically. The users are notified via e-mail. The main reason behind this attack is you have installed Jetpack plugin and it might be the door that allowed…

It takes years to build a reputation and a few minutes of cyber-incident to ruin it. ― Stephane Nappo Is your Prestashop, Magneto or OpenCart store secured? Many big e-commerce giants felt similar until their own data and customer personal information like the debit/credit card details, passwords etc. are breached. Generally, we get to know about these issues when our system…

Drupal is an acknowledged content management system which was launched in 2001. Since then it has come a long way to becoming the third most sought after content management system with around 700,000 sites using it. Following we have a list of Unsupported Drupal Modules that have known security issues which haven't been fixed by their maintainers. Uninstalling these modules…

How to prevent SQL Injection (SQLi) in Opencart 1.5.x/2.x/3.x

Opencart, one of the most prominent Open Source Shopping Cart Solution is eye candy to hackers and online attackers. Opencart uses MySQL for its databases, and incorrect interaction with the database results in various vulnerabilities. One of them is SQL injection (SQLi). Opencart has been on the radar of hackers and many cases of SQLi in OpenCart have been found in the past…

fight fraudulent transactions on WordPress

No matter what kind of store you have, but to fight fraudulent transactions on WordPress is a real threat, and you need to take action to guard against them. In a study of transactions from more than 5,000 e-commerce merchants across the world last year, it was found that the fraud rate for transactions over $500 was an alarming 11.47%.…

Opencart has been the most sought-after platform as a store management system for e-commerce merchants. Owing to its simplified design, interactive UI and ease of use, Opencart is largely favored for retail activities online. However, in light of its popularity, Opencart has notoriously garnered a reputation for being an eye candy for hackers and other attackers with malicious intent. As…

51 Must-Do Checks on WordPress Website Maintenance One of the best Content Management Systems powering millions of websites on the internet, WordPress is an user-friendly CMS that allows you to build any kind of website you want. However, owing to its huge popularity, hackers are always on the lookout for loopholes and vulnerabilities on the WordPress website. Thus, one of…

Close