OneLogin
By Lionel Thomas / Cyber SecurityWebsite Hacked / 0 Comments

This is a public service announcement from Vofer. The Password Manager “OneLogin” has had a serious security incident.

OneLogin “We detected that there was unauthorized access to OneLogin data in our US data region. All customers served by our US data center are affected; customer data was compromised, including the ability to decrypt encrypted data. We have since blocked this unauthorized access, reported the matter to law enforcement, and are working with an independent security firm to assess how the unauthorized access happened and to verify the extent of the impact. We want our customers to know that the trust they have placed in us is paramount, and we have therefore created a set of required actions.”

In essence, the attackers where able to decrypt the encrypted data, putting at risk user date and logins.

Here are OneLogin Suggestions for actions to take:
http://i.imgur.com/5hEyYgo.png

Blog update by OneLogin – https://www.onelogin.com/blog/may-31-2017-security-incident

Pinterest
By Lionel Thomas / PinterestSocial Media / 0 Comments

I hear this a lot, that Pinterest isn’t for my business as it is just for food and recipes, well this actually isn’t true, there is a large variety of businesses that do very well with Pinterest. Pinterest is dominated by woman and traffic peaks on Saturday nights, so if you have a business that women would be interested in your products or services, then it is worth your while to look into this Social Media platform,

Here are a variety of Pinterest profiles doing well:

WordPress Website Security

Thousands of WordPress websites have been hacked after a recent disclosure of a vulnerability in WordPress. WordPress delayed the disclosure for over a week and worked with security companies to have a patch ready, yet not all websites have patched and it’s a WordPress Hacker Smorgasbord.

Yet, even though the patch was released thousands of admins didn’t bother to update their websites either by removing the auto update or just not updating. Some admins may disable the auto update so they can run tests on patches prior to updating, yet with such patches a different approached should be deployed to ensure the website is secure.

The famous Linux distribution OpenSUSE (news.opensuse.org) was hacked, just quickly restored without further breaches in others parts of openSUSE’s infrastructure, the CIO reported.

The vulnerability is within the WordPress REST API, that allows an unauthenticated user to delete or modify pages and redirect their visitors to malicious exploits.

The security researcher at Sucuri, stated that they notices multiple campaigns running over the internet trying to find unpatched WordPress websites.

The call to update has been going for some time an if you have not updated to WordPress 4.7.2, then you should do so urgently in addition to checking your website.

This is a clear indication that websites nowadays need multiple layers of security and some suggestions to look into are:

 

Google tabbed hidden content mobile

With the move towards rewarding beneficial UI development for mobile websites, Google is now giving full weight to Tabbed content, previously looked down upon for Websites viewed on Desktops as you could hide large portions of text to try and get a SEO injection, although this technique is beneficial for Mobile website design as it givens a more User-Friendly interface when view multiple sections on a website when viewing on a mobile device. Tab content includes but not limited to standard tabs, Accordions and Toggled content.

Google Adwords and Facebook
By Lionel Thomas / FacebookGoogleGoogle AdwordsMarketing / 0 Comments

The concept of online marketing had burst upon the scene about five years ago and since then has increasingly gained popularity. AdWords from Google is the greatest advertising tool that still reigns supreme. But it is being challenged at every step by the Facebook Ads tool from the social networking site Facebook which has become the next best alternative to advertisers using online tools.

Though it is a newcomer to the scene of online advertising, the ROI provided by Facebook Ads to advertisers doing their online advertising with its help has been very impressive.

So what is the secret of the increasing popularity of Facebook Ads over Google AdWords?

  • Big Data
    Due to the amount of personal detail everyone is willing to give, in addition to being tracked via their phone; Facebook knows so much about us, it is like a continual census running 24/7. Consider, Facebook knows you gender, age, location, movements, friends/connections, interests and much more. This may seem intrusive, yet the Big Data stored allows for very targeted marketing never seen before, much more than Google is able to achieve at this time.
  • Competition is less
    Facebook, initially known as a social networking site whose real potential as a tool for online advertising only recently has become apparent. As compared to Google AdWords, the competition on Facebook to advertise is very little, yet as more people start to use this, it will change, so now is the time to advertise prior to Facebook becoming cluttered with ads.The number of users of Google AdWords has increased substantially during the last few years. Because of the stiff completion for space Google has increased has imposed strict rules. The cost-per-click has also gone up considerable, and is another reason the Facebook advertising platform is more attractive, due to the cheaper cost to advertise.
  • Targeting the audience accurately
    Due to the Big Data kept on Facebook users, marketers can target very specific types of people, their behaviours, interests and demographics, making for a very powerful tool that can also be used for market research and at a fraction of the cost you would have paid previously.
  • Impact of images
    As Facebook allows the use of Images and Video, it increases the interaction with their adverts, especially when compared to the dated Google text based adverts on their search results. Images play a very important part of advertising and text only limits the effectiveness of advertising.
  • Larger number of impressions
    The 6 billion hits per day for Google users has been left quite far behind by 100 billion hits per day for Facebook users. As Facebook receives approx. 20 times more traffic than Google, you have the potential for a much larger and diverse audience to reach.
  • Less cost-per-click
    Putting ads in Facebook Ads is cheaper than putting it on Google AdWords. This would mean a great deal to a small business just starting with online advertising. On an average, the cost-per-click on Facebook Ads comes to $1, and can be much cheaper if your adverts for related to the audience reached.

Do all these factors in favor of Facebook Ads, Facebook is threatening to Google AdWords. Undoubtedly Facebook Ads should be considered for online marketing, yet research should be done as to how you will advertise on this medium, as even though it looks much better than Google, the Google adverts are usually shown from people actively searching for something, while Facebook adverts are usually pushed in front of people dependant on the adverts campaign goals.

Pokemon go security risk
By Lionel Thomas / Cyber SecurityMobile Apps / 0 Comments

Pokémon GO, a location-based augmented reality game using Google Maps has recently released by Nintendo on iOS and Android; it has been a huge success, yet it has also created a huge security Risk.

Pokémon GO, grants itself FULL Account Access to your Google Account.
Full Access includes the ability to:

  • Read your Emails
  • Send Emails from your Account
  • Access Google Drive documents
  • Look at Search History
  • Access Private Photos on Google Photos
  • And More…

Are you playing Pokémon GO with a Business Email or are your employees? If yes, then this has potentially opened up the business to a major security risk.

As we become more connected, we need to be more cautious in what connects with what, especially when it comes to business.

All businesses need a policy in place around how their Google Accounts are to be used and an approval process in place as to what it can be connected to.

All other situations in connecting to software/applications, a Free Gmail account should be created and only used for this purpose, also known as a Burn (or Burner) Email Account to reduce the risk to the business.

Remove Pokémon GO’s Access to your Google Account:

  1. Open your Google Account permissions page
  2. Find and Select Pokémon GO
  3. Click “REMOVE” button to revoke Full Account Access

Pokémon GO’s Access to be changed in the future:

From the Developer: “We recently discovered that the Pokémon GO account creation process on iOS erroneously requests full access permission for the user’s Google account,” Niantic said.

The fact that it was released with Full Access should be a warning to all Businesses to be aware of what their employees are connecting to and the potential Security Risks created.

facebook remarketing
By Lionel Thomas / FacebookFacebook Re-Marketing / 0 Comments

I find many businesses sending traffic to their websites front page or similar via Google Adwords, Facebook Ads and other means. The main issue is that these types of website pages have much distraction, not always relevant and usually lacks a clear call to action. A landing page should have 1 clear topic with a relevant Call to Action and no other distractions, this way it is easier to measure and analyse results, plus you can re-market to them. Whether doing Google or Facebook ads, always use the Facebook tracking pixel as it allows you to re-market to potential Customers/Clients depending on the Action/In-Action taken.

Landing Page and Facebook Tracking

As an example, consider you are doing a Google Adwords Campaign and sending people to a Landing Page (P1), the Facebook tracking (Facebook Tracking Pixel) tracks them on this page and if they take action they go to the a Thank You page (P2) they are also tracked.

Now in Facebook you can market to those people that went to (P1) and didn’t go to (P2) as to push them over the line, or market to people that went to (P2) and up-sell them, be social or more, as people that have taken one step with you are more likely to do it again.

This can also be applied to your Shopping Cart, as a follow up to someone abandoning the shopping cart due to whatever reason (Kids, Cooking a Meal, etc…) has proven to increase sales by up to 62%.

Consider being able to market to people depending on what actions they take on your website today, to improve not only sales, but customer service as well.