WordPress Flaw found in Social Media plugin

Simple Social Buttons plugin flaw found that can take over your site.

 

URGENT – If you use the plugin ‘Simple Social Buttons’ in your WordPress installation, you should immediately update it to the latest version as there has been a serious flaw found in it that could allow an attacker to take over the site. The flaw, which was discovered last week by security researcher and developer Luka Šikić, has been discovered and a video showing how to use it to break in to WordPress websites has been released.

The flaw has been fixed by the developer and a patch released. So if you haven’t already then you should update now.

The flaw can only be leveraged in sites that allow user sign-up, which most sites have disabled due to security reasons. Never the less you should update before they figure out how to exploit the flaw without user sign-up requirements.

Any of our customers who have website maintenance contracts will have already been updated to the latest security patch. If you are not sure then you should contact your web development team and/or your host to see if they can help.

If you are really stuck then we may be able to help, please submit a support ticket with your website URL and contact information. Do NOT post your username and password in the ticket we will contact you separately for the information if needed.

If you use the Simple Social Buttons plugin for WordPress then make sure you update your site to correct the security flaw immediately.

Stay Safe

CritchCorp Computers Ltd.

 

Update to Apple FaceTime Flaw

Apple has fixed it flaw in the FaceTime program. It is safe to turn on again, after updating your device.

 

Apple has finally fixed the FaceTime Flaw we reported on week before last. They issued a patch (12.1.4) for iPhones (5S+) and iPad Air+ and iPod Touch 6th gen+ on Friday after initially disabling the group chat on the server side. They fixed the server side early last week but still needed to patch the software on the phones, iPads and iPods. This has now been done.

If you disabled FaceTime on your devices, as was advised, then after you install the latest update for your device, it is safe to turn it on again.

The issue was discovered by a 14 year old boy, who was thanked by Apple in their statement, which is here:

We have fixed the Group FaceTime security bug on Apple’s servers and we will issue a software update to re-enable the feature for users next week. We thank the Thompson family for reporting the bug. We sincerely apologize to our customers who were affected and all who were concerned about this security issue. We appreciate everyone’s patience as we complete this process.

We want to assure our customers that as soon as our engineering team became aware of the details necessary to reproduce the bug, they quickly disabled Group FaceTime and began work on the fix. We are committed to improving the process by which we receive and escalate these reports, in order to get them to the right people as fast as possible. We take the security of our products extremely seriously and we are committed to continuing to earn the trust Apple customers place in us.

Don’t forget to install the update first before switching it back on.

Stay Safe.

CritchCorp Computers Ltd.

Apple FaceTime flaw

Apple has fixed it flaw in the FaceTime program. It is safe to turn on again, after updating your device.

 

This is an urgent alert for Apple FaceTime users. A serious flaw has been discovered in Apples FaceTime app on all platforms.

The remedy

Until further notice, Apple recommends turning off FaceTime on your devices and Apple computers.

To do this, go to SETTINGS —> FaceTime and then turn off.

However

If you simply cannot live without Facetime, then you need to read the next bit to see what the problem is and how it affects you.

What has happened

Today, Tuesday 29th January 2019, Apple has reported that they have discovered a serious flaw in their FaceTime app. In short, the issue is that the person calling you may be able to hear or see you before you accept or decline the call. So if you don’t want to turn it off then you must remember that they may be able to see you or hear you before you answer, so no swearing about who‘s calling you!
Apple are working on the issue and will hopefully have a patch out later this week or next week so make sure you update your devices.
They have begun turning off the group chat function on their servers which is believed to be the cause of the issue but some users are still reporting the problem exists.
We will let you know when it is fixed.
Stay Safe
CritchCorp Computers Support Team