Important Vulnerability on Advanced Custom Fields Plugin for WordPress

Imunify360 has six core components: Web Application Firewall, Linux Malware Scanner, Proactive Defense, IDS/IPS, WebShield, and Cloud-Based Security. The last component, Cloud-Based Security, runs according to what we call heuristics. 

In Imunify360, heuristics are a set of rules based on information coming in from thousands of Imunify-protected servers all over the world. These servers send threat information to the Imunify cloud server, where it’s automatically processed by dozens of scripts. It’s also manually processed by our Analytics team. 

At 11am EST on Friday 3 April, we’ll be conducting a live webinar on the new features and updates of Imunify360. Sign up and join the conversation on what’s new with our automated server protection suite.

The recording of the webinar is available here.

If you’re using Imunify360 on your servers, you’ve got a powerful system for cleaning up malware that’s also safe. If you use the recommended default settings, the sites you host will stay up and running. 

Your backups will be easy and reliable as well. That’s because Imunify360 is integrated with popular backup services, and makes sure that all of your backup files are malware-free. Let’s examine Imunify360’s linux malware scanner and malware cleanup capabilities in detail. In addition, Imunify360 prepared an article about 360 clean up in Imunify Security Suite covering how to remove malicious code.

 

Some Imunify360 customers don’t use the Auto Cleanup option because they’re afraid that it will break client web sites. They’re afraid that if a WordPress index.php file gets infected, for instance, the file will be blocked by Malware Scanner for Linux servers, and the web site will go down.

These fears are unfounded. Malware Scanner removes malicious code that’s been injected into a file, while leaving the rest of the file intact. It also removes malicious files that have been included into other files. Enabling Auto Cleanup is completely safe and effective.

In version 4.5, Imunify360 introduced a new way to prevent brute-force attacks against mail accounts: a PAM module extension that integrates with cPanel to block attacks that target the Exim and Dovecot bundle.

Let’s explore the problems that this new PAM module extension solves, examine how it works, and learn how to use it.

 

When the Imunify360 Malware Scanner for Linux servers component identifies an injected code snippet as malicious, how can you tell it’s malicious? How can you avoid reporting this malicious code as a false-positive? The Imunify product team can show you how.

Previously, Imunify360 had to be installed through a particular control panel, such as cPanel (read more about cPanel security), DirectAdmin, or Plesk (read more about Plesk security). Now, with version 4.5, it can be installed directly on the server, independent of any panel, regardless of the administrative interface.

 

This new version of Imunify360 can be run on any CentOS 6/7, Ubuntu 16/18, RHEL 6/7, or Cloudlinux 6/7 server with Apache web server. It provides complete six-layer security for Linux VPS, dedicated, and shared servers--without requiring any web control panel.

At 12 noon (Eastern Standard Time) on Wednesday, 12 February, we’ll be conducting a webinar on Imunify360. Click hereto sign up and join the conversation on what’s new with our automated server protection suite. You could check webinar recording here.

Imunify360 is now integrated with the JetBackup server backup application. Anyone using JetBackup with WHM or cPanel can now elect to use Imunify360.

The new version of Imunify360, version 4.5, is almost here (beta version will be available in December), and it will include default scanning values that should eliminate all risk of malware infection.