May 5, 2015

Are You Under Attack? Cross-site Scripting (XSS)

Tech Talk

One of the reasons why WP Valet clients use our maintenance service is protection. Security issues arise on the internet constantly, and our team makes it our business to identify and protect you from threats to your web presence.

A big one to hit the internet this year was the Cross-site Scripting (XSS) Vulnerability. Hackers constantly explore techniques to compromise your web application and steal your treasures of sensitive data. If your site handles credit card numbers, medical records, social security numbers, or an array of other personal information—you can be sure hackers are after it.

Cross-site Scripting (XXS) is a clever way for a hacker to embed malicious JavaScript, VBScript, ActiveX, HTML, or Flash into a vulnerable page, and start gathering data on his or her machine. Using XSS, hackers successfully compromise private information, steal cookies, create requests that can be mistaken for those of a valid user, and an array of other nefarious behavior.

This month there was a serious XXS vulnerability noticed in WordPress. Cross-site scripting attacks are particularly nasty. While there are many ways to stop them, most people don’t take action before it is too late. Before it was a problem for our clients, our team was on it. To run a successful business, the value of security is not negotiable. We stake our reputation on ensuring your site runs smoothly and it protected.

If you'd like to learn more about how the WP Valet team keeps you safe, get in touch with our maintenance team. We'll explain our process in detail and create a custom quote to fit your unique business needs.