Ninja blog

We are excited to announce that BitNinja is now compatible with Enhance, the powerful multi-server hosting control panel. Web hosting has evolved beyond the era of simply hosting a website on a single server, requiring web hosts to manage their infrastructure effectively. This is where Enhance enters the picture, joining forces with BitNinja to create […]

Recently, a high-severity vulnerability was discovered in the popular WordPress Elementor Pro plugin that could potentially allow attackers to take control of affected websites. If you're using this plugin, you may be wondering what you can do to safeguard your website from this vulnerability. At BitNinja, we understand the importance of website security. Therefore, we […]

The BitNinja team had the privilege of attending CloudFest Europe 2023, the world's largest cloud festival held at Europa Park, Rust. The event was full of industry experts, tech enthusiasts, and cloud service providers, making it the perfect opportunity for us to showcase our latest developments and solutions, network with peers, and gain valuable insights […]

New whitelisted mailers for outbound spam protection (Open beta coming soon!), SiteProtection bug fixes, and stability improvements. All this, and more in the newest BitNinja version (V3.2.4)! Most systems will automatically update, if you have specific settings or applications preventing automatic updates, you can follow our documentation on how to proceed to have the latest […]

A critical security alert has been issued for users of multiple WordPress plugins after three new vulnerabilities were discovered on December 19th. These have been found to be caused by a failure to properly verify request parameters, allowing for classic SQL injection attacks.  Identifying the risks One of the discovered vulnerabilities in a plugin specifically […]

A critical vulnerability was found in Contact Form 7. The WordPress utility is activated on more than 5 million websites, and 70% of these are running the unprotected 5.3.1 version or older. The vulnerability allows attackers to bypass Contact Form 7’s filename sanitization and upload a file that can be executed as a script file on the host server.

[et_pb_section admin_label="section"] [et_pb_row admin_label="row"] [et_pb_column type="4_4"][et_pb_text admin_label="Text"] On 2 September 2020 arstechnica reported a zero-day vulnerability in a WordPress plugin. File Manager helps users manage their files on the website. It was downloaded 700,000 times and more than half of the customers are affected. The vulnerability allowed hackers to execute commands and upload files on a website. How did the BitNinja […]

On 19 February 2020, Wordfence reported a highly critical vulnerability found in the popular Duplicator plugin for WordPress. This plugin is useful when users want to migrate and copy WordPress sites. With Duplicator, sysadmins can create a new copy of the site and the generated file can be downloaded from the WP dashboard. WordPress Duplicator Plugin Zero-day […]

Hackers and cyberattack techniques are evolving every day. Hosting companies and every server owner should keep an eye on the cybersecurity news to prepare themselves and protect their systems against the new types of threats. That’s why BitNinja collects the hottest cybersecurity news and sends out a Cybersecurity Digest each month. Now, we’ve summarized the […]