Category Archives: News

ISIL Defacements Exploiting WordPress Vulnerablities – update now

The FBI has warned that ISIL is exploiting vulnerabilities in WordPress sites running out-of-date versions of WordPress or old versions of certain plugins or themes to deface the sites. The FBI’s statement:  http://www.ic3.gov/media/2015/150407-1.aspx Sucuri’s writeup with mention of specific plugins to check:  http://blog.sucuri.net/2015/04/fbi-public-service-annoucement-defacements-exploiting-wordpress-vulnerabilities.html The current version of WordPress (as of 4/8/2015) is 4.1.1.  If you… Read More »

eBay passwords compromised

According to Ars Technica, encrypted eBay passwords and other information have been stolen by cyberattackers.  If you have an eBay account, change your password ASAP.  If your eBay password is one you’ve used on other services, including your accounts with HIS, change those passwords too, and don’t use the same password on more than one… Read More »

mail.his.com mailbox quotas increased

his.com and hers.com mailboxes on mail.his.com have been increased in size to 5 gigabytes.  You can add disk storage if you need it for $1/gb/month. You can check your storage status by logging on to https://webmail.his.com and hovering your mouse over the bar under your name at the top of the screen. Tip:  if you… Read More »

ALERT: major brute-force password-guessing attack on WordPress sites underway

There’s a significant attack by a botnet on WordPress sites, where the bots are trying to guess the passwords of common admin logins.  More info:  http://arstechnica.com/security/2013/04/huge-attack-on-wordpress-sites-could-spawn-never-before-seen-super-botnet/ If you are using WordPress and are using a common username or a common password, change it immediately to something less obvious. Update your WordPress admin password when in… Read More »

Planned maintenance: dc.his.com, mail.his.com upgrades – Done

In order to expand disk space to accommodate larger user disk allowances, Zimbra servers mail.his.com and dc.his.com will be taken offline briefly this weekend: mail.his.com – starting at 3 AM EDT, Saturday, April 6th – COMPLETED 5:20 AM April 6 dc.his.com – starting at 3 AM EDT, Sunday, April 7th – COMPLETED with no downtime.  

Phishing/Malware email

We’re seeing a significant  increase in the number of ‘phishing’ and malware email messages. Most of these are being stopped by Postini’s spam/virus filters, but some are getting through, and some are getting past our own spam/virus filters that we use to supplement Postini. These messages are well crafted and look like legitimate email from… Read More »