The cybersecurity landscape continues to evolve, presenting new challenges for server administrators and hosting providers. Recently, a vulnerability in the Jobify plugin—affecting versions up to 1.4.4—was disclosed. This vulnerability allows authenticated users with Contributor-level access to exploit stored cross-site scripting (XSS). Understanding this threat is essential for enhancing server security. Incident Summary The Jobify plugin […]

The cybersecurity landscape constantly evolves, threatening web applications and servers. One recent danger is a significant vulnerability in Mockoon, a popular API mocking tool. Incident Overview Mockoon, prior to version 9.2.0, contained a critical path traversal vulnerability. An attacker could exploit this issue to obtain unauthorized access to files on the server. This vulnerability arises […]

The cybersecurity landscape continues to evolve, presenting new challenges for server administrators and hosting providers. Recently, a vulnerability in the Jobify plugin—affecting versions up to 1.4.4—was disclosed. This vulnerability allows authenticated users with Contributor-level access to exploit stored cross-site scripting (XSS). Understanding this threat is essential for enhancing server security. Incident Summary The Jobify plugin […]

The cybersecurity landscape constantly evolves, threatening web applications and servers. One recent danger is a significant vulnerability in Mockoon, a popular API mocking tool. Incident Overview Mockoon, prior to version 9.2.0, contained a critical path traversal vulnerability. An attacker could exploit this issue to obtain unauthorized access to files on the server. This vulnerability arises […]

We just launched BitNinja a little more than a month ago. It has been already demonstrated for 1 year in our own hosting environment, and success is coming from users worldwide, too. Read more and celebrate with us. BitNinja’s public beta ended on 23rd March, 2015. There were exactly 220 active BitNinja servers back then. […]

As always, you are encouraged to tell us what you think about BitNinja. Everything is welcome from bugs to development suggestions. That’s how version 1.4 was born, too. We’d like to extend a special thank you to all of the Ninjas who contributed to this version by contacting us tirelessly. Check out what’s new for […]

BitNinja’s active server counter is here again. We just reached the 294th Ninja-protected server worldwide. Now really, from Canada to Thailand, ninjas are everywhere. You guys are the best! We’d like to say thank you for this with a little gift: If you are the 300th installer in our list, you’ll get the BitNinja protection […]

BitNinja team is going to HostingCon Global in July. This is your opportunity to meet us as your potential business partner, in a fun and educational atmosphere. What is HostingCon? HostingCon is the premier industry conference and trade show for hosting and cloud providers. Join over 2000 of your hosting and cloud industry peers to discover […]

We are happy to announce BitNinja 1.0.0  The version counter turned from 0.31 to our first full release, because BitNinja 1.0.0 is now running stable on more than 100 production servers worldwide! That’s a great success for us and a big loss for the hackers. 😉  So what’s new in 1.0.0?  What is new in addition […]

There were 22.000 attendees, from more than 100 countries, with the biggest names in the tech world, more than 500 speakers, lack of wi-fi, 145.000 tweets in 72 hours, many business cards, a high interest in our server defense system and wonderful Irish hospitality. Here’s the wrap up of Web Summit 2014. Web Summit is […]

Hi there, Imagine where we will be free to meet soon: BitNinja’s going to the WebSummit, in Dublin! A few months ago we applied to the Alpha program of this event, dedicated to startups. After 2 weeks we got an email from the organizer that said: “There are so many applications for the program that we won’t […]

Did you hear about the Shellshock bug on bash Unix shell? There hasn’t been such a scandalous bug since Heartbleed that has caused such a big mess among server owners.A series of attacks on websites and servers using the serious Shellshock bug was spotted a few days ago. Millions of servers use software that is vulnerable […]

The cybersecurity landscape is constantly evolving, presenting new challenges for system administrators and hosting providers. Recently, a vulnerability identified as CVE-2025-10216 has emerged, affecting GrandNode up to version 2.3.0. This article will explain why this vulnerability matters and how you can protect your Linux server. Understanding CVE-2025-10216 CVE-2025-10216 pertains to a race condition within the […]

The recent vulnerability, CVE-2025-59052, reveals critical flaws in Angular’s server-side rendering (SSR) architecture. Understanding and mitigating such vulnerabilities is crucial for organizations focusing on server security. This post will explore the implications of this CVE, why it matters, and how server administrators can enhance their protection against potential threats. Overview of CVE-2025-59052 Angular is a […]

The recent discovery of a critical vulnerability in the Ruoyi-go Background Management System has sparked widespread concern in the cybersecurity community. This issue, identified as CVE-2025-10218, allows attackers to exploit SQL injection vulnerabilities through the SelectListPage function. System administrators and hosting providers must be proactive in addressing this risk to safeguard their Linux servers and […]