by Mark Tschetter
Posted on 2016-12-23 01:15:07
Few people know Oregon’s rivers better than brothers Clay and Ty Holloway. The duo has been fishing since they were young boys, and their love for the sport has only grown over the years. The Holloways eventually decided to share their passion by leading guided fly fishing trips along the beautiful McKenzie River. They were working with an outstanding business idea; however, the brothers recognized their need for a stronger online presence to reel in more clients.
Feynman Group created an entirely new website for Holloway Bros using the newest version of WordPress. Feynman’s web professionals began by gaining a comprehensive idea of Clay and Ty’s vision, and customized the design to fit that vision. The Holloway’s fly fishing business has no shortage of visual appeal, so Feynman harnessed it with stunning photos and a color scheme that captures the beauty of the McKenzie River. “Our primary goal with the Holloway Bros site was to convey a sense of adventure and excitement in order to spark the interest of potential clients,” said Nathan Johnson, a website developer at Feynman Group, Inc.
To make the Holloway Bros site easy to navigate, Feynman used a modern and clean setup. It’s even mobile friendly, so that potential clients can have an equally outstanding experience viewing from their phones. Since Feynman used the newest version of WordPress, it’s both up-to-date and secure. The site features a blog, photo gallery, personal testimonials, social media information, and more in order to gain maximum traction with potential and returning clients.
After seeing the final product, Ty Holloway said, “Working with the Feynman Group was a real pleasure; they were extremely helpful throughout the entire process. The service was very personal, and any questions that I had were met with a quick response. I would recommend their services to anyone looking to improve their web presence.”
Thanks to Feynman’s website design, development, and hosting the Holloway brothers now boast a modern and user-friendly online presence perfectly tailored to their business.
Ty and Clay Holloway Bros
by Mike Wilson
Posted on 2016-10-25 23:54:47
On Friday, October 21, 2016, Internet performance management company Dyn suffered a series of three distributed denial of service (DDoS) attacks, beginning at about 4:00 AM Pacific time and concluding at about 1:00 PM. The attack involving tens of millions of IP addresses affected users’ abilities to access the websites of many of Dyn’s customers, such as Twitter, Reddit, Spotify, Etsy, and others. Experts believe the attack was targeted at Dyn with one source of traffic sourcing from devices infected by the Mirai botnet.
What is a DDoS attack?
A DDoS attack is when an overwhelming amount of web traffic is directed at an online service (such as a website) in an attempt to make the service unavailable to legitimate users. In this case, tens of millions of IP addresses flooded Dyn’s Managed DNS infrastructure with requests, causing Dyn’s customers’ sites to either fail to load or load very slowly. In other words, many users attempting to do their morning scan through Twitter were disappointed when Twitter did not load.
What is DNS?
Note that the following has been simplified for the sake of simple explanation.
The domain name system (DNS) is what’s responsible for converting a domain name into its associated IP address when a website is accessed. Think of it this way: if the IP address is a set of GPS coordinates (latitude and longitude) for a business, the domain name is the street address (123 Street Ave).
When any URL is typed into the address bar of the web browser, a request is sent to a DNS server (many actually) to translate the URL into its IP address, which is then sent back to the browser, telling it how to access the website at the specified URL.
The incident on the 21st occurred when a large number of devices (many infected by the Mirai botnet) attempted to make too many requests to Dyn’s DNS servers, and the overloaded servers could not send back information to fulfill any requests.
It’s important to note that DNS hosting (the service provided by Dyn in this case) differs from website hosting. The latter generally refers to the location on a web server where a website’s files are stored.
What is Mirai?
Mirai is a new type of malware that targets “Internet of Things” or smart-devices – things like CCTV cameras, DVRs, the Nest smart-thermostat, even Internet-connected cars and refrigerators. Mirai is able to take control of such devices and use them to flood a target with traffic. When millions of infected devices are directed toward a single target in a DDoS attack, it’s enough to bring the target down across the web for both legitimate and malicious users.
How can I keep my smart-devices safe?
- Be selective with which smart-devices you use. Not all devices are created equally when it comes to security. Research before you buy, and always opt for the most secure devices, even if they cost more.
- If possible, disconnect your smart devices from an internet connection when you’re not actively using them. If there is not an option to disconnect your device from the internet, make sure it is powered off and not in a “standby” state.
- Keep your devices up to date with the most current software.
- Always use strong passwords. Some devices such as webcams and CCTVs use default passwords and settings, making them especially attractive targets for malware. Read your manual or do a Google search on how to change the passwords for these devices.
- If your smart device has been infected by Mirai, you may be able to clean it by rebooting the device, however this action alone will not protect your device from being re-infected.
- Disable WPS connection on your wireless router, and make sure your Wi-Fi network is password protected.
- Contact Feynman Group if you have any security concerns and we will work with you to implement solutions relevant to your specific needs.
Does a DDoS attack pose a threat to my website?
If you’re concerned about the resiliency of your hosting environment, contact Feynman Group to discuss whether or not changes to your current situation may be necessary.
Note, Feynman Group, Inc. is not affiliated with and does not endorse any of the websites, articles, or authors referenced in this post.
by Feynman Group
Posted on 2014-09-09 21:28:29
A serious security vulnerability has been discovered in two prevalent plugins, Slider Revolution and Showbiz Pro (WordPress). Considering these popular plugins are distributed through many popular WordPress themes from ThemeForest and sold directly on CodeCanyon, an abundance of websites can be expected to be at risk.
What it Does
According to the security blog Sucuri, due to the vulnerability, remote hackers are able to gain access into the servers of any site using outdated versions of these plugins. This includes versions of Slider Revolution earlier than 4.2 (released February 2014) and versions of Showbiz Pro earlier than 1.5.3 (released January 2014). In other words, as long as your plugins are updated to these versions, your website will be safe.
How Do I Know if I’m at Risk?
If You Purchased a Theme from ThemeForest
In response to the vulnerability, Envato contacted each theme’s authors and created a list of potentially affected themes. Check here to see if any of the themes you use are at risk. For users’ convenience, Envato organized the list in two sub-categories: (1) Themes yet to offer a secure update and (2) Themes already offering a secure update.
1. Login to your WordPress Admin site
2. Click on the Plugins link in the sidebar
3. Find the Showbiz Pro and Slider Revolution from plugin
4. The version number will appear on the second line of the Description column (as seen below)
Check your WordPress Admin
You can also check your plugin version directly by following these steps:
This vulnerability is a very serious concern. It has the potential to cause havoc on company websites and allow hackers to download virtually any information they want.
For our clients, we have begun manually updating their WordPress Plugins to ensure quality control. However, if your company is in need of protection, don’t hesitate to reach out to Feynman Group and let our expert web developers give you the security you deserve.
For additional information, hop on over here for step-by-step guides to manually update your WordPress Plugins.