Announcements

PHPMailer Security Advisory (PCI Compliance & Standard Accounts Effected)

Tuesday, December 27, 2016


Exploit type: Remote Code Execution in third-party PHPMailer library CVE Numbers: CVE-2016-10033 and CVE-2016-10045 http://www.securityweek.com/critical-rce-flaw-patched-phpmailer All versions of the third-party PHPMailer library distributed are vulnerable to a remote code execution vulnerability. We have listed a few applications effected. Immediate upgrade is required to avoid...

More »



UPDATE: Host-99 Service Maintenance Scheduled

Monday, April 25, 2016


We have completed the scheduled maintenance for Server 23. Unfortunately, Server 25 is still undergoing maintenance and transfers due to PCI Compliance requirements. Some of those accounts have already been transferred to their new destination. The remaining accounts under Server 25 will be under scheduled maintenance from April 25th, 2016 at through April 30th, 2016 to prevent as less...

More »



Host-99 Service Maintenance Scheduled

Wednesday, April 20, 2016


Please be advised that we will be performing a scheduled network maintenance during the following date and time: Starting Saturday, April 20th, 2016 at 6 a.m. EST through Tuesday, April 25th, 2016 6 a.m. EST Servers that will be effected: Server 23 Server 25 This maintenance is necessary to perform upgrades on our servers to meet latest stable versions of the following components on...

More »



PNC Bank PCI Compliance Support

Sunday, October 11, 2015


Important Notice: All customers who use PNC Bank for their merchant services now must go directly through PNC Bank directly for PCI compliance support. PNC Bank has revised their terms & conditions as of October 1st, 2015. Host 99 PCI Compliance support technicians will handle all reports submitted to them from PNC Bank directly. If you have questions regarding this notice please submit...

More »



PCI 3.0 Now In Full Effect

Monday, June 1, 2015


PCI 3.0 has been applied to all PCI servers, PCI 3.0 requirements are now in full effect. Regarding PCI 3.0 with questions. Host 99 will not fully enforce PCI 3.0 for all PCI Shared, VPS and Dedicated Servers. We will monitor for any non compliance and reports will be made regarding logs and findings. Please contact your ASV for more information. Based on feedback from the industry, in...

More »



WordPress 4.2.2 Security and Maintenance Release

Thursday, May 7, 2015


WordPress 4.2.2 is now available. This is a   critical security release   for all previous versions and we strongly encourage you to update your sites immediately.  Version 4.2.2 addresses two security issues: The Genericons icon font package, which is used in a number of popular themes and plugins, contained an HTML file vulnerable to a cross-site scripting attack....

More »



Server 23 and 25 Apache and TSL Upgrade (Servers Disabled Permanently)

Wednesday, May 6, 2015


Notice: Due to several requirements made over the past few weeks. Server 23 is currently being rebooted unannounced for the removal of TSL v1.0 and the installation of full TSL v1.1 and 1.2 support. cPanel and Webmail are still functional only Apache seems affected. This downtime was not expected and should return to normal soon. For the security of all customers accounts as announced...

More »



Security Advisory: XSS Vulnerability Affecting Multiple WordPress Plugins

Saturday, April 25, 2015


Multiple WordPress Plugins are vulnerable to Cross-site Scripting (XSS) due to the misuse of the add_query_arg() and remove_query_arg() functions. These are popular functions used by developers to modify and add query strings to URLs within WordPress. The official WordPress Official Documentation (Codex) for these functions was not very clear and misled many plugin developers to use...

More »



POODLE Vulnerability

Wednesday, October 15, 2014


On a day when system administrators were already taxed addressing several security updates released by Microsoft, Oracle, and Adobe, there is now word of a new security hole discovered in a basic protocol used for encrypting web traffic. Its name is POODLE, which stands for Padding Oracle on Downgraded Legacy Encryption, and it was discovered by three Google security researchers—Bodo...

More »



Server 23 Security Notice (PHP 5.4 Server Update) (Server Disabled Permanently)

Saturday, July 26, 2014


In order to better serve our customers, Host 99 is making an important upgrade in your server's default configuration. The default version of PHP employed by our servers will be updated to PHP 5.4. This change will ensure a more secure and stable hosting environment going forward. To help make this transition as smooth as possible, we are giving all customers some time to upgrade all PHP...

More »




« Prev Page

RSS View RSS Feed


Language:
SiteLock