Announcements
PHP version 5.6 through PHP 7.1 has become EOL
Thursday, December 5, 2019
PHP version 5.6 through PHP 7.1 has become EOL. Host 99 is the only Host provider that allows these versions until 2020. We must act to meet new server technology and to be able to offer new features that we currently cannot to our customers. Dates of Deprecation: PHP 5.6 End of Life happened on December 31, 2018. PHP 7.0 End of Life happened on January 10, 2019. PHP 7.1 End of Life...
PHPMailer Security Advisory (PCI Compliance & Standard Accounts Effected)
Tuesday, December 27, 2016
Exploit type: Remote Code Execution in third-party PHPMailer library CVE Numbers: CVE-2016-10033 and CVE-2016-10045 http://www.securityweek.com/critical-rce-flaw-patched-phpmailer All versions of the third-party PHPMailer library distributed are vulnerable to a remote code execution vulnerability. We have listed a few applications effected. Immediate upgrade is required to avoid...
UPDATE: Host-99 Service Maintenance Scheduled
Monday, April 25, 2016
We have completed the scheduled maintenance for Server 23. Unfortunately, Server 25 is still undergoing maintenance and transfers due to PCI Compliance requirements. Some of those accounts have already been transferred to their new destination. The remaining accounts under Server 25 will be under scheduled maintenance from April 25th, 2016 at through April 30th, 2016 to prevent as less...
Host-99 Service Maintenance Scheduled
Wednesday, April 20, 2016
Please be advised that we will be performing a scheduled network maintenance during the following date and time: Starting Saturday, April 20th, 2016 at 6 a.m. EST through Tuesday, April 25th, 2016 6 a.m. EST Servers that will be effected: Server 23 Server 25 This maintenance is necessary to perform upgrades on our servers to meet latest stable versions of the following components on...
PNC Bank PCI Compliance Support
Sunday, October 11, 2015
Important Notice: All customers who use PNC Bank for their merchant services now must go directly through PNC Bank directly for PCI compliance support. PNC Bank has revised their terms & conditions as of October 1st, 2015. Host 99 PCI Compliance support technicians will handle all reports submitted to them from PNC Bank directly. If you have questions regarding this notice please submit...
PCI 3.0 Now In Full Effect
Monday, June 1, 2015
PCI 3.0 has been applied to all PCI servers, PCI 3.0 requirements are now in full effect. Regarding PCI 3.0 with questions. Host 99 will not fully enforce PCI 3.0 for all PCI Shared, VPS and Dedicated Servers. We will monitor for any non compliance and reports will be made regarding logs and findings. Please contact your ASV for more information. Based on feedback from the industry, in...
WordPress 4.2.2 Security and Maintenance Release
Thursday, May 7, 2015
WordPress 4.2.2 is now available. This is a critical security release for all previous versions and we strongly encourage you to update your sites immediately. Version 4.2.2 addresses two security issues: The Genericons icon font package, which is used in a number of popular themes and plugins, contained an HTML file vulnerable to a cross-site scripting attack....
Server 23 and 25 Apache and TSL Upgrade (Servers Disabled Permanently)
Wednesday, May 6, 2015
Notice: Due to several requirements made over the past few weeks. Server 23 is currently being rebooted unannounced for the removal of TSL v1.0 and the installation of full TSL v1.1 and 1.2 support. cPanel and Webmail are still functional only Apache seems affected. This downtime was not expected and should return to normal soon. For the security of all customers accounts as announced...
Security Advisory: XSS Vulnerability Affecting Multiple WordPress Plugins
Saturday, April 25, 2015
Multiple WordPress Plugins are vulnerable to Cross-site Scripting (XSS) due to the misuse of the add_query_arg() and remove_query_arg() functions. These are popular functions used by developers to modify and add query strings to URLs within WordPress. The official WordPress Official Documentation (Codex) for these functions was not very clear and misled many plugin developers to use...
POODLE Vulnerability
Wednesday, October 15, 2014
On a day when system administrators were already taxed addressing several security updates released by Microsoft, Oracle, and Adobe, there is now word of a new security hole discovered in a basic protocol used for encrypting web traffic. Its name is POODLE, which stands for Padding Oracle on Downgraded Legacy Encryption, and it was discovered by three Google security researchers—Bodo...