This month there was large WordPress Pingback Exploit.
This post is an effort to spread the word to other WordPress users to ensure their blogs aren’t used in attacks going forward.
At issue is the “pingback” function, a feature built into WordPress and plenty of other CMS tools that is designed to notify (or ping) a site that you linked to their content. Unfortunately, like most things useful on the Web, the parasites and lowlifes of the world are turning pingbacks into a feature to be disabled, lest it be used to attack others.
And that is exactly what’s going on. Earlier this week, Web site security firm Sucuri Security warned that it has seen attackers abusing the pingback function built into more than 160,000 WordPress blogs to launch crippling attacks against other sites.
“Any WordPress site with Pingback enabled (which is on by default) can be used in DDOS attacks against other sites,” Sucuri’s Daniel Cid wrote. “One attacker can use thousands of popular and clean WordPress sites to perform their DDOS attack, while being hidden in the shadows, and that all happens with a simple ping back request.”
Fix for New Posts
Bloggers can disable pingback on posts by clicking “Settings” then “Discussion”, and then unchecking the following options if they are checked:
- Attempt to notify any blogs linked to from the article
- Allow link notifications from other blogs (pingbacks and trackbacks)
Unfortunately, Cid said, this only appears to prevent pingbacks on new blog posts and does nothing to disable pingbacks on posts that are already published for which pingback was previously enabled. Fortunately, you can install
Sucuri has declined to release the list of WordPress sites that are being used in these attacks, but it has posted an online tool that blog administrators can use to learn if their blogs have shown up in attack logs.
Source: Original article by Krebs on Security.
I believe the next WordPress update will fix this exploit, but I highly recommend that you install this plug-in at your earliest convenience.
ExactTarget recently released their 50 eMail marketing statistics for 2014 — and there were a few statics we simply had to share.
- 64% of decision-makers read their eMail via mobile devices. (TopRankBlog)
- 91% of consumers reported checking their eMail at least once a day. (ExactTarget)
- For every $1 spent, $44.25 is the average return on eMail marketing investment. (Experian)
- 33% of eMail recipients open eMails based on subject line alone. (Convince & Convert via Salesforce.com)
- 43% of all eMails are now being opened via a mobile device. (Return Path)
- A whopping 66% of Gmail opens occur on mobile devices, with only 19% opened in a web browser (Litmus)
- 93% of consumers get at least one permission-based eMail daily.
- 70% say they always open eMails from their favorite companies. Conversely, only 18% say they never open commercial eMails.
- In a study by Adestra, subject lines fewer than 10 characters long had an open rate of 58%.
- 7 in 10 people say they made use of a coupon or discount from a marketing eMail in the prior week. (Blue Kangaroo Study)
Your Website Needs to be Smart Phone Ready.
Check out these interesting stats about Smart Phone User in the United State and across the globe. As a marketer we need to ensure that we are delivering a great user experience on all screens.
Here are a few of the highlights of this smart phone infographic.
- 91.4 Million Smart phones in the U.S.
- 89% of Smartphone users use their smart phones throughout the day
- The highest Smartphone penetration age group is 25-34
Would you like to know…. How MOBILE FRIENDLY is your website??
We can help you mobilize your current website or design and develop a new responsive site that scales to any browser.
We’ve had some great feedback with our previous Yelp article: Help with Yelp, most of contacts have been asking for more info about Yelp’s secret formula.
Here are some of our observations we and others have made concerning Yelp and their automated filtering system. This is not really the Yelp secret sauce, but it should give you as a business owner some understanding into why so many of your reviews will not show up.
The Yelp Review Filter – This automated system is responsible for the automatic filtering of reviews. Sometimes these filters are temporary sometimes they lead to a very nasty warning that displays over your business.
Number of reviews:
80% of filtered reviews are from people who have written less than 5 reviews. It is human nature for people to want to promote their own business/prime the pump. Yelp knows this and leaves reviews filtered until the user has made more than 5.
Number of Friends:
Even if you have 5 reviews if you aren’t willing to share them with Facebook friends, Yelp has filtered them. The majority of people don’t have a problem sharing reviews with their friends but review spammers do. So those of us who are privacy conscious are filtered out. We have seen people with over 50+ reviews filtered out because they didn’t have any friends on yelp.
Uniqueness of content:
Real reviews begin with your experience. They aren’t a short blurb. They also don’t tell the same story across all the reviews that have been left. Yelp can look at the uniqueness of a review. If the experience is 70% or more the same, it’s going to be filtered out.
Other Trust Factors:
Do you check-in to businesses?
Do you have a profile picture?
Do you leave tips for others at restaurants?
Is your profile detail complete (things you love, hometown etc.)?
Yelp can see where you are when you leave a review. They can see what device you’re on. If you clicked a link in an email to get to the review. If you are the business owner they can see if you are using the same computer/location to login to Yelp to check on your business.
To boldly go where no man has gone before, here is Captain Picard in a brilliant parody of the classic Christmas song: Let it Snow.
Want to sing along? Of course you do!
Oh, the weather outside if frightful.
But the fire is so delightful.
And since we’ve no place to go,
Make it so,
Make it so,
Make it so.
Man it doesn’t show signs of stopping.
And I brought me some tea, Earl Grey, hot.
The lights are turned way down low,
Make it so,
Make it so,
Make it so.
When we finally kiss goodnight,
How I hate going out in the storm.
But if you really — SHUT UP WESLEY.
All the way home I’ll be warm.
Oh, the fire is slowly dying.,
And my dear we’re still good-byeing.
But as long as you love me so,
Make it so.
Make it so.
Make it so.
Did you know that there are more devices
connected to the internet than there are people on the entire planet?
This global pipeline of data keeps the world connected, and nowhere is its presence is felt more strongly than in social media. Every minute of the day thousands of photos are shared on Instagram, tens of thousands of tweets are exchanged on Twitter, hours of YouTube videos are uploaded and hundreds of thousands of pieces of content are posted to Facebook.
For example, did you know that:
- One out of every seven minutes spent online is on Facebook
- 340 million tweets are sent each and every day
- Pinterest is the social network that skews most heavily towards female users, whilst Google+ is predominately used by men
- 300 million pictures are uploaded to Facebook every day via Instagram
- 61 percent of LinkedIn members use it as their primary professional networking site
These and other social media statistics, facts and figures can be found in the incredible infographic below.
omOriginals Marketing! offers refreshingly different eMarketing solutions (websites, eMail marketing, social, search and good old fashion graphic design from our office is Renton, Washington and Longview, Washington.
Watch this video and tell us if you think omOrginals should get a company vehicle like this one? Imagine us driving to a marketing meeting on the Eastside or Cowlitz County in this rig! Maybe we could do some mobile meetings.
This video clip is the Fast and the Furious on steroids. Anyone can drift a car, but what about getting behind the wheel of a semi and drifting corners like nothing. This truck has about 1100 HP.
Visit them at www.becxtdsracing.nl for more pictures and video
Disclaimer: We are not affiliated with Becx, we just thought we’d share some adrenaline. ~:-)
Here is our modest tribute to Zig Ziglar
November 1926 – November 2012
Zig Ziglar was described around the world as a “legendary” motivational speaker. Sounds like a definite understatement for such an influential man. Instead of describing who he was we set out for a goal was to share 5 of our favorite Zigisms to share what he said. We are able to narrow it down to 15 of our favorite Zig Quotes. Please attempt to read them with his classic accent (We can hear him now say, “I don’t have an accent”.
- People often say that motivation doesn’t last. Well, neither does bathing – that’s why we recommend it daily.
- If you can dream it, you can achieve it.
- You can have everything in life you want, if you will just help other people get what they want.
- I believe that being successful means having a balance of success stories across the many areas of your life. You can’t truly be considered successful in your business life if your home life is in shambles.
- People don’t buy for logical reasons. They buy for emotional reasons.
- You cannot climb the ladder of success dressed in the costume of failure.
- You do not pay the price of success, you enjoy the price of success.
- Expect the best. Prepare for the worst. Capitalize on what comes.
- If you learn from defeat, you haven’t really lost.
- A goal properly set is halfway reached.
- Failure is a detour, not a dead-end street.
- Your attitude, not your aptitude, will determine your altitude.
- Remember that failure is an event, not a person.
- Money isn’t the most important thing in life, but it’s reasonably close to oxygen on the “gotta have it” scale.
- Statistics suggest that when customers complain, business owners and managers ought to get excited about it. The complaining customer represents a huge opportunity for more business.
Thank you Zig!
We love Christmas!
We simply couldn’t wait to start Rockin’ Around the Christmas Tree!
Watch out for the snow ball!
LinkedIn confirmed that hackers gained access to some of the enterprise social network’s passwords on June 6th, 2012.
Affected members will receive an email with instructions on how to reset their passwords; current passwords will not work. They will also receive an email with more information on what happened.
“We can confirm that some of the passwords that were compromised correspond to LinkedIn accounts,” LinkedIn director Vincente Silveira wrote in a blog post. “We are continuing to investigate this situation.”
We recommend that all LinkedIn user change their password at this time.|
omOriginals Marketing offers refreshingly different marketing solutions including Web Sites, Web Hosting, eMail Marketing, Social Media Marketing, Search Engine Marketing & good old fashioned Graphic Design.