Domain hijacking seems like a foreign concept to most but it is a very real threat. While it doesn’t gain as much attention as spam or malware, domain hijacking is equally as disruptive to businesses and organizations. In most cases, these disruptions are temporary but they can produce lingering fallout on brands.
Back in June, Webnames.ca launched some upgrades to our Canadian Hosted Business Email Plans, and they’ve just gotten even better!
AirSync is a brand new add-on to our two new email plans. AirSync allows you to sync your iPhone, iPad or Android mobile device with your, Calendars and Contacts and will allow push notifications to your phone. The add-on also allows you to synchronize your email mailboxes, to compose and send emails, event invitations, and event replies.
Other features included in Professional Email include:
Attention to all Internet users, a new scam is running around, using the Canadian Internet Registration Authority’s (CIRA) name. The targets have been mainly .CA domain holders, but those with other domains should also be aware.
The scam begins with a phone call, allegedly from CIRA. The caller will then ask for your computer’s information and will then guide you through a process that ultimately provides the scammer remote control over your computer and the sensitive information contained within.
If you do receive a phone call like this, please do not respond to the phone call or provide any information to the caller. Please report any incidents of this new scam to the Canadian Anti-fraud Centre.
PRISM sounds like an acronym from the cold war. I think about Get Smart or Man from UNCLE; secret handshakes and the dome of silence. The difference now is that the top spies are spying on us.
The Internet is an integral part of our society, and continues to be a great research tool that can be accessible anywhere around the world. Since the internet is accessible to anyone, it presents potential risks that “hackers” can exploit.
Here are a few internet safety tips directly from our customer support team member, Sean Lavasani about how to keep yourself secure online.
UPDATE: Security Threat to WordPress
Last week, we informed customers of a security threat to WordPress websites, which is being facilitated by a very large and well connected botnet.
In the past week, we have fared reasonably well against the attack by mitigating the volume of login attempts to customer’s WordPress websites. Unfortunately, a more focused and massive attack was executed this morning, which did partially impact the availability (up-time) of some websites.
After our review of this attack, and weighing the likelihood of future attacks, we are opting to take proactive steps to mitigate the damage from such future attacks, and ensure that customer websites remain up and running.
Effective today, April 25th, we will be inserting an additional login page prior to being able access the traditional WordPress dashboard login page.
The username and password required to proceed will be shown on the page. Adding this extra login is a simple but effective method of preventing the botnet attack from reaching your true WordPress dashboard login page. This additional page will afford you an additional layer of security to your website, and will also prevent the massive number of requests to the dashboard login page which are at the heart of the attack.
The front-end or ‘public’ portion of your website will not be affected by this change.
We are uncertain as to how long this additional measure will need to remain in place; however it is expected to be in place for the medium to long-term.
For assistance, please contact our Support Dept. at 1-866-221-7878 or firstname.lastname@example.org
Webnames.ca Technical Support
Webnames.ca is now accepting pre-registrations for upcoming new generic Top Level Domain Names (like .web, .hotel, .blog, .home, .tech etc.) and we’re getting a lot of great feedback from our customers!
These new extensions are a huge opportunity for businesses and individuals. Think of the possibilities! You can be creative (YourCompanyName.insurance), you can be industry minded (YourCompanyName.insurance).
In order to showcase the benefits of these new extensions, we plan to highlight a new gTLD each week!
This week, we’re taking a look at .INSURANCE, detailing the new gTLD’s potential uses and how it can benefit registrants for this specific domain space.
Benefits of a .INSURANCE domain name:
The seedy underbelly of the Internet is at it again. This time, their target is WordPress, with the aim of taking control over such websites for the proliferation of spam, the hosting of phishing websites – or both. To facilitate such an attack, a massive and well-connected botnet has been assembled, consisting of some 90,000 compromised computers and websites. These unwitting participants will have been programmed to attempt access to hundreds of thousands of WordPress installations across the globe (not only at Webnames.ca) through the administrator login and weak login passwords.
While Webnames is taking precautionary measures to limit the impact of the actual login attempts (referred to as brute-force attacks, which when especially voluminous form a distributed denial of service attack (DDoS)), any WordPress installation which utilizes an easily guessed password is now, more than ever, at serious risk of becoming compromised.
Protection from this risk is as simple as utilizing a complex password.
A complex password can come at the cost of some convenience; however the convenience factor pales in comparison to the cost of losing your entire website.
What constitutes a weak password is subjective, however if your current password favors convenience or simplicity, then it should be considered weak. Passwords containing sequential numbers, owner names, usernames, domain names, addresses etc. or one of 500 easily guessed passwords , are all easy fodder for a compromised computer (ala the aforementioned botnet) to systematically guess – it is simply a matter of time.
We strongly encourage all WordPress website owners to update their passwords – either directly or with the assistance of a trusted party. We have provided instructions on our website and are happy to assist customers with this update.
Please contact our Customer Support team at 1 866 221-7878 or email@example.com
Webnames.ca President and Co-founder, Cybele Negris’ new article titled “Sorting out the technology behind secure websites” is out and you can find it on the Business in Vancouver magazine. In this article, she explains to us the basics of SSL (Secure Sockets Layer), how it works, and why online businesses should have them.
Webnames.ca would like to announce that on January 13, 2013, we will start offering the ability to register Internationalized Domain Names (IDN). In short, .CA holders will be able to use characters that are outside American Standard Code for Information Interchange (ASCII) or the English Alphabet. In Canada’s case, CIRA will be implementing the use of French IDNs.
Webnames.ca would like to announce that we are launching some new additions to our Web Hosting Plans! New features include a Rapid SSL Certification that can be added to your hosting plan for just $2* per month and the ability to host multiple domains from a single account.
CIRA‘s latest Cyber Security Tip Sheet is about Mobile Devices. Our mobile devices have become such an integral part of our lives. With the constant technological innovations being introduced in the market, may of us assume that our devices have greater security and privacy capabilities compared to laptops and desktops. As a result, we start exercising less caution when using our phones, which can lead to serious security and privacy issues.
Any time you add personal details to your online profile, there is the risk that a scammer may steal them. Though many may seem innocuous, it may only take a few details–your full name and your full date of birth, for instance–to open the door to your online accounts. As well, if your status updates aren’t kept private scammers may watch them to gather details that will let them guess your password or your security question.
On Wednesday June 6th, the security passwords of 6.5 million LinkedIn users were compromised. A Russian hacker had stolen encrypted passwords and posted them online, read more in this related article on Mashable.com.
CIRA has issued a phishing attack warning to advise .CA domain name holders of a phishing scam designed to collect personal information including Canadian Social Insurance Numbers. The e-mails were made to appear to be coming from the Canada Revenue Agency, but with “CIRA” listed in the “from” address line.