Elementor Pro Critical Vulnerability via @martinibuster

Elementor Pro Critical Vulnerability via @martinibuster

ADVERTISEMENT WordFence is reporting that Elementor Pro has a Critical Zero Day vulnerability exploit. This vulnerability has not been patched and it is actively being exploited. Two Elementor Plugins Are Vulnerable According to WordFence there are two plugins involved that each have a vulnerability. Elementor Pro is a Vulnerable Plugin Elementor Pro is the paid version of the Elementor WordPress page builder plugin. This vulnerability does not affect the free version of the Elementor plugin. The vulnerability is rated as “critical” according to WordFence. A hacker would need to be registered with the website in order to take advantage of the vulnerability. If you run an Elementor Pro powered WordPress […]

Google May 2020 Update – What We Know via @martinibuster

Google May 2020 Update – What We Know via @martinibuster

Search results continue to churn three days after Google announced the May 4 2020 update. Google warned it may take a couple weeks to settle. This is why that might not be good. Most updates settle fairly quickly with minor changes along the way. This update is different. The changes are felt by many and the results seemingly change from day to day, even hour to hour for some. Why Updates Cause Ranking Volatility One of the reasons the search results become volatile is because it may take some time to roll out the changes to all the data centers globally. When your browser hits a data center it could […]

Google on Using Quora for Links via @martinibuster

Google on Using Quora for Links via @martinibuster

Someone started a discussion on Twitter promoting the Quora website for link building. Google’s John Mueller responded with a comment that seems to indicate that Google is aware of the practice. Quora Promoted for Link Building Quora is a website headquartered near Google that was founded by people who were formerly associated with Facebook. Quora is a question and answer website. Questions are asked and people answer them. The practice of using Quora for link building is essentially the same strategy for forum spamming and profile link spamming. Forum Spam Tactic Forum spamming is going to a community, answering questions and adding a link to your site for “more information.” […]

GoDaddy Hosting Breach Undetected for 6 Months via @martinibuster

GoDaddy Hosting Breach Undetected for 6 Months via @martinibuster

ADVERTISEMENT GoDaddy is sending notices to customers to alert them of a hosting security breach. The security breach is described in vague terms by GoDaddy as an individual obtaining log-in information that could have given the hacker the ability to upload or change website files. GoDaddy Hosting Compromised for Six Months According to the California Department of Justice, the security breach occurred on October 19, 2019 and was reported about six months later on May 3, 2020. Screenshot from the State of California Department of Justice web page for security breach announcements. SSH Access Breach SSH is known as Secure Shell. It’s a secure protocol used to execute commands on […]

ICANN Blocks Sale of Dot Org Domain Registry via @martinibuster

ICANN Blocks Sale of Dot Org Domain Registry via @martinibuster

ADVERTISEMENT ICANN, the organization that oversees domain name registries, blocked the sale of the dot org domain name registry to a private equity investment company.  The decision to withhold consent for the sale may have been influenced by the Office of the Attorney General of California. The board ruled that the sale would create uncertainty and that withholding consent for the sale was the reasonable thing to do. The Internet Corporation for Assigned Names and Numbers (ICANN) stated: “On the whole, the ICANN Board determines that the public interest is better served in withholding consent as a result of various factors that create unacceptable uncertainty over the future of the […]

WordPress Vulnerability Update via @martinibuster

WordPress Vulnerability Update via @martinibuster

ADVERTISEMENT WordPress announced an update that fixes seventeen bug fixes and seven vulnerabilities. WordPress is automatically updating sites to WordPress 5.4.1. It is important to check that your WordPress installation is updated to version WordPress 5.4.1. Cross-site Scripting Vulnerabilities WordPress patched it’s software to address multiple Cross-site scripting (XSS) vulnerabilities. There are two kinds, XSS and Authenticated XSS. A cross-site scripting (XSS) vulnerability allows an attacker to inject a malicious script on a vulnerable web page. An authenticated cross-site scripting (Authenticated XSS) is the same vulnerability only this one happens when a user is logged in. The user can be anyone ranging from a site member all the way up […]

Ninja Forms WordPress Plugin Vulnerability via @martinibuster

Ninja Forms WordPress Plugin Vulnerability via @martinibuster

ADVERTISEMENT Popular WordPress Forms plugin Ninja Form recently updated their plugin to patch a severe vulnerability. The vulnerability is rated a high severity because it could allow an attacker to steal admin level access and take over the entire website. Cross-Site Request Forgery Vulnerability The exploit that is causing this is called Cross-Site Request Forgery. This kind of vulnerability exploits a lack of a normal security check which then allows an attacker to upload or replace files and even gain administrative access. This is how the Common Weakness Enumeration site, describes this kind of exploit: “The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent […]

3 Ways to Measure Link Quality via @martinibuster

3 Ways to Measure Link Quality via @martinibuster

The following are ideas that I came up with during the course of my two decades in the Internet marketing experience, and nearly 20 years building links and watching trends come and go. These three tips are like a framework for thinking about what it truly means when we talk about quality links. Understanding what makes a link relevant and useful for ranking and sales is important. It can help you better understand how to use your resources for maximum effect. 1. How Many Site Visitors Will Convert? One way to judge the usefulness of a link campaign that someone may suggest to you, is asking yourself (or your SEO) […]

Why Google Correlation Studies are Unreliable via @martinibuster

Why Google Correlation Studies are Unreliable via @martinibuster

Correlation studies of Google search results have a long tradition in SEO.  But they also may be unreliable for providing insights into how Google ranks web pages. Using insights from correlation studies in an SEO strategy may result in poor decisions. Backlink Correlations Some correlations studies will find that having more links correlates with the number one ranked sites. Other correlation studies have discovered ideal anchor text ratios and how many links should be pointed to the home page. But there is a problem with these kinds of findings. Positions 1 – 10 of Google’s search results are often ranked for different search intents. The classic example of this reality […]

Three Simple Ways to Improve Content via @martinibuster

Three Simple Ways to Improve Content via @martinibuster

It’s a common saying that “content is king. But that’s not been true for a long time now.  There’s a new focus for ranking better that exponentially improves upon publishing content. In the past many did well cranking out content that was salted and peppered with the keywords they wanted to rank for. This was a time when site maps could rank in Google’s search results. Some people were even repurposing old college papers and collecting ad revenue from the traffic. Content No Longer King But Google doesn’t send traffic to random content anymore. Algorithms like Panda came out that targeted manufactured content designed around keywords. Today, Google sends precise […]