Showing posts with label Wordpress. Show all posts
Showing posts with label Wordpress. Show all posts
Are you learning about Phishing and security issues?

Phishing and cheating on the internet world is very popular today.

So how to not be " Bite Fishing " will be explained in this article by the Hawk.

But first, learn some concepts!
What is phishing?



What is phishing?
How does Phishing work?
Typical example of Phishing

Phishing forms
1. Spear Phishing
2. Clone Phishing
3. Voice Phishing
4. Whaling Attack

The impact of Phishing on you
Phishing attacks in 2012

Protection against Phishing attacks
1. Two-Factor Authentication (two-step authentication)
2. HTTPS instead of HTTP
3. Anti-Spam software
4. Links in Email
5. Firewall (Firewall)

What is phishing?

Phishing is a fraudulent way in which a fake attacker is a reputable individual or organization in an email, or other communication channel. An attacker uses phishing emails to distribute malicious links or attachments that can perform various functions, including collecting login or account information from the victim ..
Phishing is very popular with cyber criminals (internet).

For tricking someone into clicking on a malicious link in a phishing email (very similar)

It is much easier than trying to pass security classes .

How does Phishing work?

Phishing is targeted by hackers the most on social networks (Facebook, Instagram, Twitter ..)

By contact forms such as email, live chat, messages on MXH, sms ....

As you can see today for information on people on Facebook is not difficult.

By basic information such as email, name, phone number, address, history, work ....

They will use them to prepare a fake email, and send it to you.

Sometimes you don't expect it and will believe this is real and anonymous email Click.

And you have been "bitten" by all login information, bank card ...

They are stolen by scammers.

Typical example of Phishing

Here are some typical examples of phisihing

A fake email from myuniversity.edu (very similar to real) is sent to all teachers.
The email declares that the user's password is about to expire (1 day left).
This guide contains a link to myuniversity.edu/renewal to renew their password within 24 hours.
Typical example of Phishing

Some possible consequences when clicking on the other link such as:

The user is redirected to myuniversity.edurenewal.com , a fake phishing website that requires both a new password and an existing password. The attacker will collect the password to hijack the administration area of ​​the school website.


The user will be redirected to the real password change page. However, during redirection, a malicious script will activate in the background to hijack user session cookies. This leads to an XSS attack, allowing the culprit to access the privileged area.

Phishing forms

Currently phishing has many different types.

Attackers change and find the most sophisticated ways to deceive you.

Here I will introduce you some of the most popular types.

1. Spear Phishing

Spear phishing is a type of attack based on the victim's information (personal or organization).

Then send phishing emails with specific information to deceive them (like confirming the password)

Or maybe take advantage of people who work with you to fake

In order to perform spear phishing hackers will need to gather the target's information.

Then will plan to attack.

2. Clone Phishing

With clone phishing scammers will take advantage of the original email (such as email changing GG account account password)

Copy with the same content (note the email sent, sometimes just the ".")

They will then replace it with another URL, or attach a file containing malicious code.

Because this email is sometimes "identical" to the original, you will be easily fooled.

3. Voice Phishing

Voice phishing is also known as phishing via automated dialog.

Victims will be notified of unusual activity on bank accounts and credit cards.

And caught up to confirm the information to "usurp"

Sometimes this form of phishing also comes via SMS to the victim, asking for confirmation of information.

4. Whaling Attack

Whaling is a type of fraud directed at those who have high positions in certain organizations.

Hackers will have to plan carefully and thoroughly, because these are big goals (hard to trick).

The hacker information will need to be accurate and detailed.

Often they will pretend to be a higher-level employee, and demand their execution.

The impact of Phishing on you

Phishing is a serious crime in the cyber world. Phishing can cause:


  • Financial loss
  • Lost data
  • Blacklist of organizations
  • Spreading malware and viruses into computers or a computer system
  • Unauthorized use of user details
  • Abuse your social security number etc.

Phishers can also get user account information and open a new account with the victim's name.

Phishing can even be used to ruin someone's life, by abusing their personal information.

Phishing attacks in 2012

According to the Anti-Phishing Working Group (APWG), phishing attacks have increased significantly, these phishing sites are mostly in the US.

In the last three months of 2012, an average of more than 25,000 phishing email reports were sent to APWG.

In addition, phishing websites grow like mushrooms over 45,000 / month.

To see more detailed reports before the last quarter of 2012, click here

.

Financial services and payment services are a common goal of phishing fraud, increasing 12% in phishing reports in online games.

Game information is being stolen by hackers and games, sold in the black market for cash. Players are also affected.

Protection against Phishing attacks

Being on the lookout for fake emails is the main factor you need to pay attention to.

But is there a way to not become a phishing victim?

Here are some ways ...

1. Two-Factor Authentication (two-step authentication)

Gmail , Facebook , Dropbox, Microsoft, Apple iCloud and Twitter are all applications that support Two-Factor Authentication.

During this process, you log in with a password, and another code will be sent to your phone.

So unless the hacker has your phone, you can access your account.

Two-Factor Authentication

2. HTTPS instead of HTTP

HTTPS is a safer HTTP protocol because it encrypts your browser and all the information you send or receive.

Especially information such as bank cards, Visa, Master. HTTPS or SSL is a must-have on the online sales website.

It will help protect your sensitive personal information.

If you don't know  how to add SSL and HTTPS in WordPress

Please refer to our installation service .

How the fake website can be identical to the real website, so check carefully to see if https is ok (green lock next to the URL)

3. Anti-Spam software

It is best that you do not receive fake emails and let them spam.

You will be less likely to encounter phishing emails.

We've got an article How to prevent junk email with WordPress , read it if you don't know yet.

4. Links in Email

Never click on the link received in the email from an unknown or unverified source.

Such links contain malicious code and you will be asked to log in or enter your personal information when you visit.


Always search for organization names from search engines and click on from search results.

5. Firewall (Firewall)

With a firewall, users will prevent multiple hijack browsers. It is important that both the computer's firewall and the network firewall check the origin of the traffic, whether it's an acceptable domain name or Internet protocol. It is also effective against viruses and spyware attacks.

Hope this article helps you understand what Phishing is and how to prevent the phishing threats online.
Removing unnecessary Jetpack CSS out of WordPress website helps reduce page-size and increase load speed.

As you know, Jetpack is one of the versatile plugins that helps integrate many useful features into WordPress website . WP Basic already has a series to guide how to use the Jetpack plugin with the most popular modules. And because of the versatility, Jetpack is quite cumbersome and heavy, especially when you don't know how to turn off unused modules. But even if you turn off unused modules, Jetpack still increases the website's CSS capacity. Why so?
Remove Jetpack CSS


Overview of installing and using the Jetpack plugin
Prevent Jetpack from creating additional records in the database options table
Why do you need to remove Jetpack CSS?
Not only equipped with separate CSS files for each module, Jetpack also aggregates them into one file and loads directly on the front-end. Therefore, even if you have turned off the module, its CSS is still present on the website. So of course, our job now is to immediately remove this "big" CSS file of Jetpack to help reduce page-size, the number of requests and make the website load faster.

How to remove Jetpack CSS?
For Jetpack 6.9 and later
Very simple! All you need to do is insert the following code at the end functions.phpof the theme file (or child theme) that you are using.

add_filter ('jetpack_sharing_counts', '__return_false', 99);
add_filter ('jetpack_implode_frontend_css', '__return_false', 99);
view raw functions.php hosted with ❤ by GitHub
For Jetpack 6.8.1 and earlier
If you are using Jetpack old version (from 6.8.1 and earlier), replace it with the following code. Remember to delete the lines of code that are similar to each module you are using to retain them.

// First, make sure Jetpack doesn't concatenate all its CSS
add_filter ('jetpack_implode_frontend_css', '__return_false');
// Then, remove each CSS file, one at a time
function jeherve_remove_all_jp_css () {
  wp_deregister_style ('AtD_style'); // After the Deadline
  wp_deregister_style ('jetpack_likes'); // Likes
  wp_deregister_style ('jetpack_related-posts'); // Related Posts
  wp_deregister_style ('jetpack-carousel'); // Carousel
  wp_deregister_style ('grunion.css'); // Grunion contact form
  wp_deregister_style ('the-neverending-homepage'); // Infinite Scroll
  wp_deregister_style ('infinity-twentyten'); // Infinite Scroll - Twentyten Theme
  wp_deregister_style ('infinity-twentyeleven'); // Infinite Scroll - Twentyeleven Theme
  wp_deregister_style ('infinity-twentytwelve'); // Infinite Scroll - Twentytwelve Theme
  wp_deregister_style ('noticons'); // Notes
  wp_deregister_style ('post-by-email'); // Post by Email
  wp_deregister_style ('publicize'); // Publicize
  wp_deregister_style ('sharedaddy'); // Sharedaddy
  wp_deregister_style ('sharing'); // Sharedaddy Sharing
  wp_deregister_style ('stats_reports_css'); // Stats
  wp_deregister_style ('jetpack-widgets'); // Widgets
  wp_deregister_style ('jetpack-slideshow'); // Slideshows
  wp_deregister_style ('presentations'); // Presentation shortcode
  wp_deregister_style ('jetpack-subscriptions'); // Subscriptions
  wp_deregister_style ('tiled-gallery'); // Tiled Galleries
  wp_deregister_style ('widget-conditions'); // Widget Visibility
  wp_deregister_style ('jetpack_display_posts_widget'); // Display Posts Widget
  wp_deregister_style ('gravatar-profile-widget'); // Gravatar Widget
  wp_deregister_style ('widget-grid-and-list'); // Top Posts widget
  wp_deregister_style ('jetpack-widgets'); // Widgets
}
add_action ('wp_print_styles', 'jeherve_remove_all_jp_css');
view raw functions.php hosted with ❤ by GitHub
If you don't know how to open a file functions.phpor simply fear making a theme error, please refer to the article " Create functions.php file to insert custom WordPress code ".

Finally, delete the website cache (and CSS cache, JS if available) and check the results using tools like GTmetrix or Pingdom (see page-size). It's simple, right? Good luck!

If you like this post, please subscribe to my blog to regularly update the best, latest posts via email. Thanks very much. :)
Material Design is a new design style introduced by Google at the same time with Android 5.0 Lollipop version (mid 2014). Material Design design supports touch screen experience through rich features and natural movement that mimics objects in the real world. Designers optimize the user experience with 3D effects, realistic lighting and animated features in GUI-based platforms. 

While learning about Material Design, I have met some Material Design-style themes for very beautiful bloggers that you can download for use. 

1. MDFOSTRAP - Responsive Material Design Blogger Template

This templat style is simple and smooth that is suitable for you to blog. 

Features of this theme 

- Responsive Design 
- SEO Friendly 
- Mobile Friendly 
- Breadcrumbs 
- Awesome LightBox 
- Ads Ready 
- Auto Blog Post Summarize 
- Social Share Button 
- Subscribe Form 
- 2 Column 
- Inline Edited 
- CSS3 + HTML Dropdown Menu 
- Featured Category By Label 
- Contact Page 
- Custom Error 404 Page
http://www.insurancefinances.com/2019/05/template-material-design-blogger.html
- Live demo here 

- You can download this template here 

2. Material Design Responsive Blogger Template

This template is very simple and lovely: D - You can view the demo directly here and download it here
Feature of template
  • SEO Friendly
  • Valid Schema.Org
  • Responsive
  • Menu
  • Mega Menu
  • Easy Customization
  • Unlimited Color
  • Realated Article
  • Ajax Load More
  • Page Navigation
  • Back To Top
  • Breadcrumbs
  • Tab Widget
  • Social Widget
  • Facebook Widget

3.Materiality

Materiality is also a template of Material Design style. 

You can see the live demo here and download this template here. 

Hope you enjoy these interface templates.
Recently, you have contacted me about how to use the plugin to create social sharing button for WordPress website to have less impact on the loading speed. Honestly, I am not a sympathetic person for social network sharing buttons. Although they make it easy for users to share their favorite articles on social networks, however, they are more or less adversely affecting the download speed of the site. That's why I have left all the share buttons (which were created by Jetpack ) at the end of the posts.
Even though I don't like it, to meet your requirements, I have tried to find out on other websites. Inadvertently, I managed to get the benchmark results of WP Rocket , giving me a detailed view of the impact of social sharing plugins on the load speed of the website. And today, I will share it with you.

Benchmark the social network sharing plugins

The benchmark is conducted by Pingdom Tools. Website uses default Fifteen Twenty theme, does not install any plugin other than WP Rocket and Query Monitor (but only works in backend).
Below is the benchmark results used to make a reference (when not using social network sharing plugin):
no-su-dung-plugin-share-the-world

Results and advice

The lightest, most recommended social networking plugins, including: Social Media Feather , Monarch(inline mode), Simple Share Buttons Adder and Mashsharer . These plugins only make the page-size and website load time increase a little bit.
velvet-plugin-share-the-web-download-content
The next group includes plugins that are slightly "bulky" but still acceptable: Monarch (when adding widgets in the sidebar), Jetpack (Icons + text mode), Shareaholic, Monarch (when inline mode) & fly in), Sharify, AddToAny (when available and without floating sidebar).
velvet-plugin-chia-se-carry-over-the-middle-war
The heaviest, unused social network sharing plugins include: AddThis, ShareThis, Async Social, Jetpack (official icon mode), Really Simple Share and Ultimate Social Media & Share. They cause the loading time and page-size to double or even triple.
velvet-plugin-chia-se-mang-a-plug-in
These results have been tested a long time ago (since 2015) and may have changed. However, hopefully they can help you in reference to make the best choice.
Do you know of other social networking plugins that are lighter and more beautiful? Don't forget to share it with us in the comment box below.
If you like this post, please subscribe to my blog to regularly update the best, latest posts via email. Thanks very much. :)
Enable to allow image replacement in WordPress, keep the name and related information intact.
Have you ever wanted to replace an old image on your WordPress website with a new image more suitable? This means you will have to edit the article / page containing the old image to remove it and insert a new image. And more importantly, you will have to rename the new image to be different from the old image, otherwise the change will not work, even if you upload and override it via cPanel / DirectAdmin File Manager or FTP software.
Don't worry too much, because in WordPress, everything can be solved in a much simpler way with the help of the plugin. Soon, I will show you how to replace images easily and keep the same name and related information.
Replace the image in WordPress

Replace the image in WordPress with Enable Media Replace

1. First, you need to install and activate a plugin called  Enable Media Replace . This plugin was developed by ShortPixel - the best image compression support tool available for WordPress platform today.
install-enable-media-replace-plugin-enable-media-replace
2. Go to Media => Library , find the image you want to replace. Right next to it will appear the Replace media button , click on it.
click-vao-nut-replace-media
3. Select the new image file from your computer in the Choose File section .
replace-media-upload
There will be 2 options to replace the image:
  • Just replace the file : you must upload a new image with the name and format (PNG, JPG, GIF ...) identical to the old image.
  • Replace the file, use new file name and update all links : you can upload new images with any name and format, the system will update itself and change the old information to new.
Click the Upload button to confirm.
4. After completing, delete the web browser cache, web cache and CDN cache (if any) and check the results. You can also disable and delete this plugin if you no longer need it.
It's simple, right? Good luck!

If you like this post, please subscribe to my blog to regularly update the best, latest posts via email. Thanks very much. :)
Enable to allow image replacement in WordPress, keep the name and related information intact.
Replace the image in WordPress
Have you ever wanted to replace an old image on your WordPress website with a new image more suitable? This means you will have to edit the article / page containing the old image to remove it and insert a new image. And more importantly, you will have to rename the new image to be different from the old image, otherwise the change will not work, even if you upload and override it via cPanel / DirectAdmin's File Manager or FTP software.
Don't worry too much, because in WordPress, everything can be solved in a much simpler way with the help of the plugin. Soon, I will show you how to replace images easily and keep the same name and related information.

Replace the image in WordPress with Enable Media Replace

1. First, you need to install and activate a plugin called  Enable Media Replace . This plugin was developed by ShortPixel - the best image compression support tool available for WordPress platform today.
install-enable-media-replace-plugin-enable-media-replace
2. Go to Media => Library , find the image you want to replace. Right next to it will appear the Replace media button , click on it.
click-vao-nut-replace-media
3. Select the new image file from your computer in the Choose File section .
replace-media-upload
There will be 2 options to replace the image:
  • Just replace the file : you must upload a new image with the name and format (PNG, JPG, GIF ...) identical to the old image.
  • Replace the file, use new file name and update all links : you can upload new images with any name and format, the system will update itself and change the old information to new.
Click the Upload button to confirm.
4. After completing, delete the web browser cache, web cache and CDN cache (if any) and check the results. You can also disable and delete this plugin if you no longer need it.
It's simple, right? Good luck!
If you like this post, please subscribe to my blog to regularly update the best, latest posts via email. Thanks very much. :)
Download Free Norebro WordPress Theme is a carefully crafted flexible and high performance multi purpose WordPress Theme for personal and corporate use.
Nulled Norebro WordPress Theme comes with the most popular page builder WordPress Visual Composer. Create gorgeous pages and layouts fast and easy without coding.
DownLoad Free Norebro 1.3.2 WordPress Theme

Norebro WordPress Theme Features

  • One Page Sites
  • Full Screen Sections Layout
  • Vertical Split Screen Sections
  • Interactive Elements
  • Parallax Layers
  • Masonry Gallery
  • WPML Ready
  • RTL Ready
  • Sticky Header
  • Different Logo Types
  • Footer
  • Header Title
  • Left Menu
  • Side Menu
  • Fullscreen Menu Overlay Menu
  • One-Click Demo Content Import
  • Multiple Portfolio List layouts
  • Multiple portfolio list hover types
  • Portfolio List Item entry animations
  • Full Screen Menu option
  • Customizable Title Area

Download Nulled Norebro WordPress Theme

Before you start download Norebro WordPress Theme from tutorial4you.pro you should know. All files on our site don’t contain hidden links, malware and can be downloaded by direct link. The link is generated using AJAX technology and live only 1 hour. Therefore, some Internet browsers extensions may incorrectly generate a link.
Note: If you are having trouble with Norebro WordPress Theme free download, try to disable AD blocking for the site or try another Web Browser. If disabling AD blocker or change Web Browser not help to you please contact us.

Changes to Free Norebro 1.3.2 WordPress Theme

Before you begin to update Norebro WordPress Theme, make sure that you have made a backup site.
  • Fix Onepage fullscreen slider issue fixed;
  • Fix List Box Shortcode icon style issue fixed;

Download Norebro WordPress Theme

https://drive.google.com/open?id=1BmYd9j53-M22x7ddNpSzdqBf6KKHA0GK
https://www.dropbox.com/s/x69ehseazi54kv4/norebro-1.3.2.zip?dl=0
Remove Gutenberg stylesheet from WordPress to make the website lighter and load faster.
Thus, WordPress 5.0 has officially been launched for nearly 3 weeks. And since then, the number of people who install Classic Editor plugin to switch to using the classic editor of WordPress has also increased dramatically (more than 1 million websites are activating this plugin), enough to see How Gutenberg lost his heart. Not only causing discomfort and inconvenience to use, Gutenberg also "silently" uploads his stylesheet to the front-end of the website, making the WordPress source code more cumbersome.

What is the Gutenberg stylesheet?

There are 2 CSS files, including wp-block-library-cssand wp-block-library-theme-css, automatically downloaded on all websites using WordPress version 5.0 and above. They are still loaded even if you don't use the Gutenberg editor or have installed the plugin to replace it with the Classic Editor.
gutenberg-stylesheet-wp-block-library
Although these 2 files are not large, they will also affect the speed of website loading. Therefore, if you don't use Gutenberg, it's best to disable them.

How to remove Gutenberg stylesheet?

Very simple! All you need to do is insert the following code at the end functions.phpof the theme file (or child theme) you are using and save.
// * Disable Gutenberg stylesheet in front
function wps_deregister_styles () {
wp_dequeue_style ('wp-block-library');
wp_dequeue_style ('wp-block-library-theme');
}
add_action ('wp_print_styles', 'wps_deregister_styles', 100);
view rawfunctions.php hosted with ❤ by GitHub
Clear the website cache, browse the web browser and check the results. If nothing changes, the two lines of Gutenberg stylesheet will disappear when you view the source website.
go-bo-gutenberg-stylesheet-wp-block-library
Isn't it great? Good luck!
If you like this post, please subscribe to my blog to regularly update the best, latest posts via email. Thanks very much. :)