Tag Archives: vulnerability

SSL 3.0 Protocol Vulnerability and POODLE Attack (CVE-2014-3566)

All Ecological Hosting web hosting servers have been updated to disallow SSLv3 to help mitigate the SSLv3/POODLE vulnerability. US-CERT Report: https://www.us-cert.gov/ncas/alerts/TA14-290A “The POODLE (Padding Oracle On Downgraded Legacy Encryption) attack demonstrates this vulnerability using web browsers and web servers, which … Continue reading

Posted in News, Security News | Tagged , , , , , | Leave a comment

Bash ‘Shellshock’ Vulnerability (CVE-2014-6271 & CVE-2014-7169)

A very serious flaw in a critical piece of software that runs on almost all Linux operating systems has been found. BBC news story: http://www.bbc.co.uk/news/technology-29361794 Dubbed ‘Shellshock’ the flaw allows attackers to potentially take control of a vulnerable system and … Continue reading

Posted in News, Security News | Tagged , , , , | Leave a comment

OpenSSL ‘Heartbleed’ Vulnerability (CVE-2014-0160)

There has been a lot of coverage concerning the following vulnerability: https://www.us-cert.gov/ncas/alerts/TA14-098A We are pleased to be able to report that none of our systems are affected because we are currently running OpenSSL version 0.9.8 across the board. During the … Continue reading

Posted in News, Security News | Tagged , , , , , | Leave a comment

WordPress 3.6.1 Security Update

WordPress 3.6.1 has been released. This is a critical security update that resolves several security vulnerabilities, including one that could result in remote code execution on your site. If your website is running WordPress, in order to help keep your … Continue reading

Posted in News, Security News | Tagged , , , | Leave a comment