Have I been Pwned?

No that was not a typo. There is a website that has access to data breach information. It is not clear whether it lists all data breaches in the public domain, or a select few of them. The website asks you to enter an email address into the site, it will check through the information it holds and will respond if a match is found. 

I tried one of mine and it returned several results indicating that my email address and an associated password to access an online account is in public circulation. It also shows if your email address is in spam lists as well. 

I have seen two sets of results on data breaches, one indicated your email address exists in a list somewhere that is in circulation, (typically a junk mailing list). You cannot do anything about this. The other case tells you the website and your email AND a password is in circulation. In the latter case you should be concerned about it if you were previously unaware. 

Continue reading Have I been Pwned?Facebooktwittergoogle_plusredditpinterestlinkedintumblrmail

Google Recaptcha version 2

Personally I use Chrome for most of the work I do from a computer. I may use MS Edge (rarely) or Firefox to test outside of the Google Chrome environment. While doing some of that testing I was surprised to see that it can be difficult to enter some information to get past this Google Recaptcha 2 screen below.

Sometimes I have had to go through 3 iterations to get through. I have noted in Continue reading Google Recaptcha version 2Facebooktwittergoogle_plusredditpinterestlinkedintumblrmail

Do You Send Newsletters?

New recommendations for Newsletters

Some of you are using Mailpoet on your websites to generate newsletters. I have run into a lot of problems sending out my newsletter this month, I have had to send it three times. I checked through my logs and found that a very small number came out last month as well. I have been investigating what has happened.  The top two entries in the image below show there is a problem because rather than a 65%+  opening rate, there is a 4% opening rate.

Continue reading Do You Send Newsletters?Facebooktwittergoogle_plusredditpinterestlinkedintumblrmail

Google Recaptcha v1 Withdrawn

YOU ONLY NEED TO TAKE ACTION IF YOU CHECK YOUR SITE AND SEE A MESSAGE LIKE THE ONE ABOVE. IF YOU DON’T SEE THE MESSAGE YOU ARE UNAFFECTED.

It seems that Google have withdrawn Google Recaptcha Version 1 function that is used on some contact forms wef 31/03/2018. Please check your contact form now and see if this has happened to you. It was withdrawn yesterday. If you have this problem on your site nobody can send you a message so it is important to resolve it quickly.

Self Help

This is what you need to do:

Login to the site go to Forms in the sidebar menu and select it.

This for most people will show a single form or multiple forms. Select a form and open it in the editor and check to see if the bottom most item says New reCAPTCHA.

If you have that on your form, delete it. Then save the form.

Check ALL of the forms on your site if you have more than one. Save each one.

On completion go into your site as a user would, and locate each form and send a message to confirm it is working. Check the form still makes sense as well.

This has removed the Spam Protection mechanism used in this form. So your spam count may go up as a result of making this change.  However your visitors can still send you a message.

This particular form plugin is no longer supported by the author, so we should probably find an alternative form. Check back on this site later for a solution that uses the new or an alternative Google ReCaptcha function.

If you immediately start getting hit by an increase of Spam let me know please.Facebooktwittergoogle_plusredditpinterestlinkedintumblrmail

IP Geolocation and why it may be important

I frequently use something called IP Geolocation to find out where a user is located for forms, enquiries, or any log evidence of someone doing something to try to establish if they are who they say they are.

It does not work 100% but I would say it works in 99% of cases. The router or gateway you use that your network/ computer is plugged into has an address allocated to it by your service provider (BT, Talk Talk, NTL, etc). For most of us the IP address changes from time to time and is referred to as dynamic. They do this to make sure it is hard to run your own web server from home. If and when you reset your router, when it comes back online it will likely have a new IP address. You can find out what your IP address is by clicking on this link. Continue reading IP Geolocation and why it may be importantFacebooktwittergoogle_plusredditpinterestlinkedintumblrmail

Fast Secure Contact Form

Some of the websites I have built use a plugin called Fast Secure Contact Form. It was a very popular form handler highly regarded by users written by Mike Challis.  The plugin was sold to a third party in June of this year and the new owner attempted to manipulate the code in the plugin to set up adverts.

Please check ASAP whether the version that is currently in use on your website is version 4.0.56. You can do that by logging in, and going to the Plugins page and look down the list. You will see an entry similar to the one below which includes the version number.

If you have version 4.0.56 you are OK! Don’t panic. 

If your site is at an earlier version contact me immediately and I will sort out updating it. 

(update: 6:00am 27/9/17 Nobody has reported a problem so far, all sites have upgraded automatically. That was to be expected. If you cannot find Fast Secure Contact form another method is used for forms on your website. Probably Form Manager. You are not affected by this notice.)

Why is this important?

Continue reading Fast Secure Contact FormFacebooktwittergoogle_plusredditpinterestlinkedintumblrmail

Phishing Page

What is it?

We have all read about phishing trojans, but many of you probably do not know what they are or how they work. I came across one over the weekend while backing up a client’s website. My anti virus system prevented me from downloading the backup to my computer and warned me that one was present. As I was concerned about the security of this particular website I took it apart to find out where it was, and what it was doing.

Phishing

Phishing refers to a form of identity theft, it is where credentials like a user name and password are compromised, often without your knowledge. Other than reading about them, I had not come across one before. This one relates to stealing the credentials to access someones email address and email password.

I turned off my anti-virus (not recommended if you do not know the risks) and downloaded the zipped folder containing the files into a special area on my computer and then inspected the files. Two files contained code, one was a web page. Only one of the files was being flagged as the one containing the Phishing Trojan, the file contents were very simple, they packaged up the information and sent out an email to two recipients.  Continue reading Phishing PageFacebooktwittergoogle_plusredditpinterestlinkedintumblrmail

Two Scams to be aware of…..

I have come across two scams this week targeting small regional charities, one about domain registration, I came across several years ago, but it looks like it is still going on. The first is encouraging you to call a premium rate number.

Scam #1  Contact me message

You all have forms on your websites, and you usually get legitimate enquiries on these forms. Do however check the contents in a message and if the only way you can contact someone is via a premium rate number then don’t bother calling. If the content is virtually non existent like this one below, it is encouraging you to call a premium rate number. In this particular case I checked the number through a web search. This individual is sending messages to websites through contact forms.  So if 10 people call back then that is £1+ they have made depending on how long they keep you on the phone, you would not know what their premium rate is prior to calling.

If you are not sure, type in the following into a Google Search form:  who called me 08712771062  (Obviously substitute the number you wish to check. In this particular case it took me to this page: http://who-called.co.uk/Number/08712771062 if you read the reported cases there, you can see the depth of the scam and other people’s comments.

Normally anyone contacting your organisation will provide more information in the form for you to process and not leave a short message like this.

Scam #2  About your domain name

In many cases I am looking after your domain names, so if you get anything like this send it to me, it is a bit more subtle than the previous one. In general domain names are registered to organisations and that registered information can be located on the internet. So a determined third party can find it and then contact you. This is how the domain scam works: Continue reading Two Scams to be aware of…..Facebooktwittergoogle_plusredditpinterestlinkedintumblrmail

Obfuscated links – take care

One of the websites I look after was taking content provided by third parties and adding it into the website. I was working my way through some posts when I came across a strange looking link hidden under an innocent looking title.

The editor in this case had just cut and paste everything, and had not tested it. There were two cases, one went to a newsletter mailing website and then was diverted to the actual site. In this case the actual site was simply a holding page, and the fact that the link went to that site via a third party meant it was logged. Of course we do not know what else happened on the way.  The link text contained Yurts for Life, but the link was actually going to here:

http://manorfarm.us10.list-manage1.com/track/click=eea270f45b87b007e97fa644b&id=ebeb93cbe5&e=c391a34f71  

Which is not going to Yurts for Life. The behaviour of the link when clicked went somewhere, then to somewhere else.

The link was provided in good faith, however if nobody checks these things it can be simply passed down the chain. In this case it is probably completely innocent, however what if it wasn’t?  Would you know; the fact you have put this on your site, exposes it to all of your visitors.

Test it when you publish it

Continue reading Obfuscated links – take careFacebooktwittergoogle_plusredditpinterestlinkedintumblrmail