Linked – WordPress hacks expose law firms’ cyber-disconnect – and, perhaps, client data

ByMike McBride February 20, 2017February 21, 2017 Reading Time: 2 minutes

The lesson, as always, don’t use WordPress or any other web-facing technology if you aren’t going to keep up to date with it.

“Earlier this month, users of the popular WordPress CMS were advised to upgrade to the latest version of the software to patch “an undisclosed critical vulnerability.” At the sound of that dogwhistle, hackers pounced, targeting the many sites whose users had not immediately pushed the update.

In the weeks since, some 1.5 million websites have been exposed and defaced, including what appear to be the sites of several hundred law firms — their marquees tagged prominently with the aliases of their attackers.”

I don’t mean to pick on WordPress necessarily in this post. WordPress actually handled things the way you would expect a software company to. They were notified of a security problem, and they patched it almost immediately. The problem is that many organizations didn’t get the patch applied in a very timely manner, and that is ultimately the problem. Law firms, especially but not exclusively, simply don’t have an infrastructure that can keep up with applying security patches. Even those that have a plan to deal with security generally have one period of time per month where they can take down systems to patch them. And that’s only after any updates have been tested in a non-production environment before being rolled out. In this case, that was far, far too slow.

That might work for some internal tools. It does not work for web-facing tools that can be accessed by hackers.

You need a better plan.

In fact, one of the biggest reasons I switched hosting providers was the ability to have my WordPress installs automatically updated when I was too busy to keep it updated myself. I’ve learned the hard way not to have un-patched versions of WordPress on my sites. There’s no reason for a law firm or other organizations to not do the same.

http://logikcull.com/blog/wordpress-hacks-expose-law-firms-cyber-disconnect-perhaps-client-data/

Follow these topics: Blogging, LawFirms, Links

Blogging | Personal | Photography | Travel

Random Travel Photo Blog

ByMike McBride July 24, 2013 Reading Time: 1 minute

In my experimenting with Tumblr with a sports blog, a thought occurred to me. I take quite a few photos with my phone while traveling, and some with my camera when I have that with me. Some of them get shared on Flickr, or Instagram or Facebook, but when I want to point people to…

Career | Training

Listening To Be a Better Trainer

ByMike McBride August 20, 2012August 19, 2012 Reading Time: 3 minutes

This past week, I was off doing some training. Most of the time, when I go to do training onsite, I’m the only one traveling, and I spend much of my free time on my own. There’s something to be said for that, after spending all day in front of people, it’s nice to unwind…

Blogging | Links | SocialNetworking

Linked: The Old Internet Died And We Watched And Did Nothing

ByMike McBride December 31, 2019December 29, 2019 Reading Time: 2 minutes

This is a really good reminder to not rely on a third-party to be the home of all of your stuff. You may end up losing it forever. Despite the constant flurries of social startups (Vine! Snapchat! TikTok! Ello! Meerkat! Peach! Path! Yo!), when the dust was blown off the chisel, the 2010s revealed that…

Links

This Week’s Links (weekly)

ByMike McBride June 22, 2014October 13, 2015 Reading Time: 1 minute

Following TrueCrypt’s bombshell advisory, developer says fork is “impossible” tags: Tech MM Unconscionable | Ball in your Court tags: LitSupport MM Social Media Makes Me Stronger (And Less Depressed) Since we usually only ever hear about the dangers of social media, I’m glad to see others talking about the benefits of connection! tags: MM SocNetPres…

Links | Training

Linked – “Another nail in the coffin for learning styles” – students did not benefit from studying according to their supposed learning style

ByMike McBride April 11, 2018April 9, 2018 Reading Time: 1 minute

This theory of learning styles is widely assumed to be true, not just in academia, but when it comes to technology training as well. I remain a skeptic of it, and current research continues to find no truth in it. “Husmann and O’Loughlin don’t pull any punches in their conclusion. Their findings, they write –…

Personal | Tech

Online Services That Help Me Keep Life Straight

ByMike McBride February 25, 2015January 19, 2017 Reading Time: 4 minutes

As you may know by now, my work requires me to travel pretty often, and one of the biggest challenges when you find yourself in a new place every week, iis keeping track of the little things. As it turns out, I utilize quite a few apps and web services to help me out with…

Linked – WordPress hacks expose law firms’ cyber-disconnect – and, perhaps, client data

Like this:

Random Travel Photo Blog

Like this:

Listening To Be a Better Trainer

Like this:

Linked: The Old Internet Died And We Watched And Did Nothing

Like this:

This Week’s Links (weekly)

Like this:

Linked – “Another nail in the coffin for learning styles” – students did not benefit from studying according to their supposed learning style

Like this:

Online Services That Help Me Keep Life Straight

Like this:

Leave a Reply Cancel reply

Top Posts

Like this:

Similar Posts

Like this:

Like this:

Like this:

Like this:

Like this:

Like this:

Leave a Reply Cancel reply

Follow Me

Top Posts