The savvy Internet attacker can capture customer data, billing information, and even credit card numbers. Today, it is not at all difficult to imagine a situation in which such an offender is able to intercept online ecommerce transactions in real-time and to dynamically replace account number to which customers are paying for goods purchased.

You may remember from my post that the security issues involved in different people from around the world. The result is that in this group of people are also our countrymen from Poland. Not so long ago, one of the Polish names appeared next to the updates and security vulnerabilities in Joomla 1.7 and (first edition) 2.5. In this way my trail fell on Jacob, with whom I swapped a few words in an interview.

The Joomla Project made available for download Joomla 2.5.3. This is another security release, and site administrators are recommended to upgrade immediately to the new release. This just has the security fixes in it so it should be safe and easy to update. 

Since its release, the Joomla Project has published two security releases for Joomla 2.5.x. GavickPro recommends that all sites currently built on Joomla 2.5.x be upgraded to release 2.5.2. An interesting note is that the security weaknesses triggering the 2.5.1 security release were identified by fellow Polish countryman and IT Security Consultant, James Galczyk. We will try to interview with that person.

Pwn2Own is the largest hacking contest that takes place every year, targeting browsers on the market. Each year the latest versions of browsers are attacked, with the intention of being shown their vulnerabilities.

After spending years on end to see the competition being crushed so overwhelming in Pwn2Own, this year was Chrome to be the first to fall. And did not just fall once, but twice! Read more...

First of all I have to mention today's update of Joomla to version 2.5.2. This is a security release (Two Security Issues Fixed). The update process in Joomla is very easy (almost one click in Extension Manager) - so you don't have to update core files by FTPing them.

The security of our data should not be limited to prevent access by outsiders to these. It should also be aware that deleted data can be recovered on the discs if they are not disposed of conveniently.

To help you in the process of deleting files securely you can use Zer0, a user friendly file deletion tool with a high level of security and quick to use.

The Joomla Project published first security release for Joomla 2.5.x and we recommend that everyone running Joomla 2.5.0 upgrade their version to Joomla 2.5.1. Interestingly, these weak points in security the current version of CMS were found by our countryman James Gałczyk (IT Security Consultant).

Today Joomla team announces availability of Joomla 2.5. Along with new features such as advanced search and automatic notification of Joomla core and extension updates, the Joomla CMS for the first time includes multi-database support with the addition of Microsoft SQL Server.

Read more...

Attacks on websites whose purpose is to block them, they are not complicated. As is generally the weakest element is the irreverent attitude of the administrator or editor of a website.