CleanTalk's blog

    Sign up

    Author: Alexander

    • Alerts vs Action: Update on the Malware Scanner by CleanTalk

      Alerts vs Action: Update on the Malware Scanner by CleanTalk

      We wanted to give you a heads-up about a small but important change regarding the differences between our Malware Scanner by CleanTalk trial and premium versions. Don’t worry, it’s nothing too big, but it is important. So, straight to business!

      Here’s the thing: the trial version of our scanner is like having a super vigilant friend keeping an eye on your website 24/7. You know, that one friend who always spots trouble from a mile away? It’s constantly on the lookout, scouring every nook and cranny of your site for any signs of malware.

      But, while our trial version is good at playing detective and searching for potential threats, it stays an alarm system. It will alert you to danger, but won’t chase it away.

      Now, this is where our premium plan comes in. Imagine upgrading from that vigilant friend to a cyber-security superhero. Now malware isn’t only bound to be detected — it’s bound to be cured! You’re not just getting alerts — you’re getting instant healing.

      So, while our trial version still shows its ability to keep an eye out for potential issues, your next-level problem-solving and peace of mind start with the paid plan.

      We appreciate you taking the time to read this, and we want you to know how much we value having you as part of the CleanTalk family. Your online safety is our top priority, and we’re always working on ways to keep your website happy, healthy, and malware-free!

      Questions? Concerns? Just a sudden urge to chat about web security? Don’t hesitate to reach out. We’re always here for you — and we love a good tech talk!

      Stay awesome!

      Update by September 6, 2024

      Check this guide to identify a malware on WordPress.

    • How to Detect VPN IPs with CleanTalk BlackLists Database

      How to Detect VPN IPs with CleanTalk BlackLists Database

      In today’s digital world, ensuring the security and integrity of your website is paramount. One crucial aspect of this is detecting and managing traffic from VPNs (Virtual Private Networks). VPNs can be used for legitimate purposes, but they are also frequently used by spammers and malicious actors to mask their identities. CleanTalk’s BlackLists Database offers a powerful tool for identifying and managing VPN traffic. This guide will walk you through the process of detecting VPN IPs using CleanTalk BlackLists Database.

      Why is it Important to Detect VPN Traffic?

      Detecting VPN traffic is essential for several reasons:

      Enhanced Security: VPNs can be used by malicious actors to hide their true IP addresses, making it harder to track their activities. By identifying and managing VPN traffic, you can better protect your website from potential threats.
      Spam and Hacking Prevention: Spammers often use VPNs to bypass IP-based spam filters. Detecting VPN traffic helps in reducing spam submissions and maintaining the quality of user interactions on your site.
      Accurate Analytics: VPNs can skew your website analytics by masking the true geographic locations of visitors. Identifying VPN traffic helps in maintaining more accurate visitor data.
      CleanTalk BlackLists Database for VPN and Malicious Traffic Detection
      CleanTalk’s BlackLists Database provides a comprehensive resource for identifying VPNs, hosting services, and other potentially harmful network types. The database includes information on the type of network, spam frequency, and whether the IP has been involved in spam or malicious activities.

      Here’s an example of a response from the CleanTalk API:

      {
  "data": {
    "IP_ADDRESS": {
      "domains_count": 0,
      "domains_list": null,
      "in_antispam_previous": 0,
      "spam_frequency_24h": 0,
      "spam_rate": 1,
      "in_security": 1,
      "country": "US",
      "in_antispam": 1,
      "frequency": 33,
      "in_antispam_updated": "2024-07-28 05:40:40",
      "updated": "2024-07-28 16:40:43",
      "appears": 1,
      "network_type": "hosting",
      "submitted": "2022-08-22 00:15:40",
      "sha256": "69b4bf5e24594462df40c591636ed9ad3438e8f2d6284069d0c71e8c0ee8a9ad"
    }
  }
}

      In this response, the network_type is “hosting,” which often overlaps with VPN. For TOR networks, network_type will be ”tor”. For more accurate detection of traffic from VPN addresses, we recommend using the parameter in our API “network_type”. For networks belonging to VPN services, it will have the value “network_type”: “paid_vpn”. However, we also recommend using the “hosting” network type for more accurate traffic detection.

      Some examples of IP types:
      https://cleantalk.org/blacklists/85.192.161.161 IP type is not indefined
      https://cleantalk.org/blacklists/67.223.118.81 IP is belongs to the hosting network type
      https://cleantalk.org/blacklists/109.70.100.1 IP is belongs to the network TOR type
      https://cleantalk.org/blacklists/66.249.64.25 IP is belongs to the network type good_bots (this is Google search bot).

      Accessing CleanTalk BlackLists Database

      You can access the CleanTalk BlackLists DataBase in two ways:

      1. API Access: The API provides real-time updates and allows you to query IP addresses on demand. This is ideal for applications requiring the most up-to-date information.
      2. Database Files: You can also download database files, which are updated hourly. This method is suitable for offline processing or bulk operations.

      For detailed pricing information and access levels, visit CleanTalk’s pricing page.

      Integration Capabilities

      Example Code for Checking VPN IPs Using CleanTalk API
      This example demonstrates how to use the CleanTalk API to check IP addresses and block traffic based on specific conditions.

      Logic of the Check:
      1. If the network type is neither “hosting” nor “good_bots”, block the IP address if the data was updated within the last 7 days and the spam frequency is greater than 5.
      2. Block IP addresses if the network type is “hosting”, “paid_vpn” or “tor”.
      3. Allow IP addresses if the network type is “good_bots”.

      import requests
import datetime

API_KEY = 'your_api_key'
IP_ADDRESS = 'IP_ADDRESS'

response = requests.get(f'https://api.cleantalk.org/?method_name=spam_check&auth_key={API_KEY}&ip={IP_ADDRESS}')
data = response.json()

ip_info = data['data'][IP_ADDRESS]
network_type = ip_info['network_type']
updated_date = datetime.datetime.strptime(ip_info['updated'], '%Y-%m-%d %H:%M:%S')
frequency = ip_info['frequency']

# Check logic
if network_type in ['hosting', 'tor', 'paid_vpn']:
    print("Block this IP address")
elif network_type == 'good_bots':
    print("Allow this IP address")
elif (network_type != 'hosting' and network_type != 'good_bots' and 
      (datetime.datetime.now() - updated_date).days <= 7 and frequency > 5):
    print("Block this IP address")
else:
    print("Allow this IP address")

      Description of the Logic Fetching Data from CleanTalk API:
      1. A request is sent to the CleanTalk API to get information about the IP address.
      2. The JSON response is parsed to extract information about the IP address.

      Checking Network Type:
      1. If network_type is “hosting”, “paid_vpn” or “tor”, the IP address is blocked.
      2. If network_type is “good_bots”, the IP address is allowed.

      Additional Check:
      1. If the network type is neither “hosting” nor “good_bots”, the updated_date and frequency are checked.
      2. If the data was updated within the last 7 days and the spam frequency is greater than 5, the IP address is blocked.
      3. Otherwise, the IP address is allowed.
      This code allows you to configure traffic filtering based on the network type and other parameters provided by the CleanTalk API, ensuring the security of your site and preventing unwanted traffic. You can learn more about using the spam_check API here https://cleantalk.org/help/api-spam-check.

      Benefits of Using CleanTalk for VPN Detection

      Using CleanTalk for VPN detection offers several advantages:

      1. Comprehensive Coverage: CleanTalk’s database covers a wide range of IP addresses, including those used by VPNs, hosting services, and other potentially harmful networks.
      2. Real-Time Data: The API provides real-time data, ensuring you always have the most current information.
      3. Easy Integration: CleanTalk’s solutions are easy to integrate into your existing systems, offering flexibility and customization based on your specific needs.
      4. Enhanced Security: By effectively identifying and managing VPN traffic, you can better protect your website from spam, fraud, and other malicious activities.

      For more information about CleanTalk BlackLists Database, visit CleanTalk BlackLists.

      Detecting VPN IPs is crucial for maintaining the security and integrity of your website. CleanTalk’s BlackLists Database provides a robust solution for identifying and managing VPN traffic. With real-time API access and comprehensive database files, you can ensure your site remains secure and spam-free. Explore CleanTalk’s pricing options to find the right plan for your needs and start protecting your site today.

    • Payment Issue Alert: Important Information and Our Actions to Resolve It

      Payment Issue Alert: Important Information and Our Actions to Resolve It

      We’ve found a glitch in our payment system that messed up PayPal payments for about 300 of you who paid between May 1 and July 18. Some debit and credit cards didn’t get charged right. We understand fully that the problem is on our side. The team is working hard to fix things and make it right for everyone affected.

      We’ve sent emails to people whose payments were wrong. You can also check your payment history to see if anything’s missing. We’ve marked the payments that didn’t go through.

      1

      What We Did

      1. We’ve made sure you can continue using your account without interruption.
      2. To thank you for your patience, we’re adding 3 extra months of service starting July 29th.
      3. We kindly request that you process the payment for the original license period again.

      Important Points to Note

      • You’ll only be charged once, even if you pay again.
      • The extra 3 months are our gift to you.
      • You have until October 29, 2024, to finish paying.

      Next Steps

      1. Please verify your bank or PayPal statement to confirm whether the affected payment was charged.
      2. Visit your payment history page to complete the payment. You can select a suitable package.
      3. Click the “Renew” button to process the failed payment. This action will maintain your active license and initiate the bonus period.

      Need Help?

      We understand this may be frustrating. Sorry for the inconvenience it caused. Our support team is here to lend a hand, as always. Don’t hesitate to contact us.

    • Say Goodbye to Checkout Spam with CleanTalk for Opencart 4!

      Say Goodbye to Checkout Spam with CleanTalk for Opencart 4!

      Hey there, Opencart store owners! Are spammers giving you a headache? Let us put a smile on your face. CleanTalk Anti-Spam plugin for Opencart 4 is your new best friend in the fight against online nuisances!

      Imagine a world where your Opencart checkout form is protected from spam and fraudulent orders. Well, guess what? That world is here! Our clever little plugin works tirelessly behind the scenes to keep your store safe and your customers happy.

      Here’s why you’ll love CleanTalk:

      1. Spam-Be-Gone: Watch those annoying spam attempts bounce right off your checkout form. It’s like having a bouncer for your online store!
      2. Fraud Fighter: Say “not today” to those sneaky fraud orders. CleanTalk’s got your back, 24/7.
      3. Easy-Peasy Integration: No tech wizardry required! CleanTalk plays nice with Opencart 4, making setup a breeze.
      4. Happy Customers, Happy You: With a smooth, spam-free checkout, your real customers will love shopping with you even more.
      5. Time-Saver Extraordinaire: Less time cleaning up spam means more time growing your business. Who doesn’t want that?

      But don’t just take our word for it! Give CleanTalk a spin and see the difference for yourself. Your Opencart store deserves the best protection from checkout form spam and fraud orders, and that’s exactly what we deliver.

      Ready to kick spam to the curb and give your store the shield it deserves? Hop on board with CleanTalk today – because a happy checkout is a protected checkout!

    • A Beginners’ Guide: Crafting Captivating Pages on Your WordPress Website

      A Beginners’ Guide: Crafting Captivating Pages on Your WordPress Website

      WordPress pages are the cornerstones of your website’s static content, perfect for showcasing timeless information like “About Us” or “Contact” sections. This comprehensive guide will empower you to not only create pages in WordPress but also structure them strategically and fill them with engaging content.

      Creating a New Page

      1. Log in to your WordPress dashboard.
      2. In the left-hand menu, navigate to Pages.
      3. Click on Add New.

      Building Your Page’s Content

      • Title: Craft a clear and concise title that encapsulates your page’s content. This title will be displayed in navigation menus and search results.
      • Content Area: This is where your page’s main content resides. WordPress utilizes a block editor, allowing you to add text, images, videos, and more using pre-designed blocks:
      • Click the “+” button to explore the various block options.
      • Drag and drop blocks to arrange your content in the preferred order.
      • Featured Image (Optional): Select an image that visually represents your page’s content. This image is often displayed alongside your page title.

      Content Composition Techniques

      • Readability Matters: Break up large text chunks with images, headings (H1, H2, etc.), and bullet points. Use short paragraphs for easy scanning.
      • Internal Linking Power: Link to relevant pages within your website to enhance navigation and keep visitors engaged.

      Publishing and Visibility Control

      • Publish Button: Once your content is ready, click the “Publish” button to make your page live on your website.
      • Visibility Options: You can choose to make your page publicly viewable, set it as a draft for further editing, or mark it as private for specific users.

      Arranging Your Pages for Optimal Flow (Page Hierarchy)

      • Parent-Child Relationships: WordPress allows you to establish a hierarchical structure for your pages. A parent page acts as a category, housing child pages that fall under its umbrella.
      • While creating a new page, look for the “Page Attributes” section on the right-hand side of the editor.
      • Under “Parent,” use the dropdown menu to select an existing page as the parent. This creates a sub-page nested under the chosen parent page.
      • Navigation Menu Creation: Once you have a few pages, it’s time to create a navigation menu to help visitors find their way around.
      • In the WordPress dashboard, navigate to Appearance > Menus.
      • Give your menu a name and select the pages you want to include. You can use drag-and-drop to arrange the pages in the desired order within the menu.
      • Choose a menu location (header, footer, sidebar) and click “Save Menu” to make it live on your website.

      Maximizing Your Pages’ Potential

      • Categorize and Tag: Organize your pages using categories and tags to help visitors discover related content. Categories are broader groupings, while tags are more specific keywords.
      • Preview Function: Before publishing, use the preview function to see how your page will appear on the live website. This allows you to refine the layout and content before making it public.
      • SEO Optimization: Enhance your search ranking by incorporating relevant keywords in your title, headings, and content. Consider using SEO plugins for further optimization.
        • Yoast SEO: A household name in the WordPress SEO world, Yoast offers a user-friendly interface with a comprehensive feature set. It excels in on-page optimization, guiding you through keyword optimization, readability analysis, and title tag and meta description creation. While the free version provides a solid foundation, premium plans offer additional features like internal linking suggestions and social media previews.
        • Rank Math: This plugin is a powerful contender, known for its extensive free features and affordable paid plans. It offers on-page optimization tools similar to Yoast, including keyword research suggestions, content analysis, and schema markup implementation. Rank Math integrates well with popular page builders and provides basic local SEO and WooCommerce SEO optimization within the free version.
        • SEOPress: This plugin is another strong option, particularly for those seeking a lightweight and speed-focused solution. SEOPress offers on-page optimization tools, social media optimization, and broken link checker functionalities. Their free version is feature-rich, and their paid plans cater to larger websites with features like content redirection and white labeling.
        • The SEO Framework: If technical SEO is your primary concern, The SEO Framework is a great choice. It prioritizes website speed and automation, with features like automatic image SEO optimization, robots.txt editor, and built-in XML sitemap generation. While the free version offers valuable tools, paid plans unlock features like local SEO optimization and content audits.

      Bonus Advice: Choosing the Right SEO Plugin

      The best SEO plugin for your website depends on your specific needs and preferences. Here’s a quick breakdown to help you decide:

      • For beginners: Yoast SEO or Rank Math (free versions) offer a user-friendly interface and essential features.
      • For value-seekers: Rank Math provides a comprehensive free feature set with affordable paid upgrades.
      • For speed-conscious users: SEOPress is a lightweight option that prioritizes website performance.
      • For technical SEO focus: The SEO Framework excels in website speed optimization and automation.

      Remember, SEO is an ongoing process. It’s wise to experiment with different plugins to find the one that best suits your workflow and SEO strategy.

      By following these detailed steps and incorporating these tips, you can create well-structured, informative, and engaging pages that will elevate your WordPress website and provide a seamless user experience for your visitors.

    • CleanTalk Research Team Discovers Stored XSS Vulnerability in WP SEOPress Plugin (v7.7.1)

      CleanTalk Research Team Discovers Stored XSS Vulnerability in WP SEOPress Plugin (v7.7.1)

      The CleanTalk Research Team identified a critical Stored XSS (Cross-Site Scripting) vulnerability in the WP SEOPress plugin, version 7.7.1. This flaw can be exploited by attackers with contributor privileges to create new admin accounts, potentially granting them full control of your WordPress website.

      Understanding Stored XSS (CVE-2024-4899)

      Stored XSS vulnerabilities allow attackers to inject malicious scripts directly into your website’s database. These scripts are then executed whenever someone views the compromised content. Unlike reflected XSS, user interaction isn’t required to trigger the attack, making it particularly dangerous.

      How Attackers Can Exploit This Vulnerability

      An attacker with contributor privileges can exploit this vulnerability by injecting malicious JavaScript code into the “SEO Title” field while creating a new post. This code can then be used to create a new admin account, granting them complete control over your website.

      Potential Consequences of an Exploit

      • Complete Site Takeover: Attackers could create new admin accounts and seize full control of your website.
      • Data Theft: Sensitive information like user credentials, financial records, and even your website’s content could be stolen.
      • Website Defacement: Attackers could alter the appearance of your site, inject further malicious code, or display unauthorized content.
      • Persistent Backdoors: Malicious actors might install backdoors to ensure continued access even after the initial vulnerability is patched.

      Taking Action to Secure Your Website

      1. Update Immediately: The most critical step is to update the WP SEOPress plugin to the latest version as soon as possible. This update addresses the vulnerability and safeguards your website.
      2. Review User Roles: Carefully review user roles and permissions. Contributors should have the minimum access necessary for their tasks.

      Through continuous vulnerability discovery and disclosure, we empower website owners and developers to take preventative measures. We believe that by working together, we can create a robust and secure WordPress ecosystem for everyone.

      Stay vigilant. Stay secure.

    • Attention CleanTalk Anti-Spam Users! Important Update Regarding Public Widget

      Attention CleanTalk Anti-Spam Users! Important Update Regarding Public Widget

      We’re writing to inform you that the public widget for CleanTalk Anti-Spam will be removed from the plugin and no longer be supported after August 1, 2024.

      What does this mean for you?

      The public widget, which is typically displayed on public pages and demonstrates the number of spam attacks, is no longer considered compatible with modern WordPress development practices and has seen low user demand. As a result, we’re removing it from the plugin to ensure optimal performance, streamline the user experience, and focus on core functionalities. This removal also helps us stay aligned with future WordPress versions.

      What action should you take?

      While the public widget will no longer be available after August 1, 2024, CleanTalk Anti-Spam’s core functionality remains unchanged and will continue to provide robust spam protection for your WordPress site.

      Here’s what you can do:

      1. No action required: If you don’t utilize the public widget, you don’t need to take any further action. CleanTalk Anti-Spam will continue to operate seamlessly.
      2. Review alternative widget usage: If you’ve been using the public widget, we recommend exploring alternative methods for interacting with CleanTalk Anti-Spam’s features. These may include accessing settings pages or utilizing shortcodes.

      Affiliate Program Guidance

      If you’ve been using the public widget to promote the CleanTalk AntiSpam Affiliate program, we recommend transitioning to using Affiliate links along with our banner. This method provides a more streamlined and effective way to promote the program.

      To get started with Affiliate links:

      1. Access your CleanTalk Affiliate Dashboard: Log in to your CleanTalk account and navigate to the Affiliate program section.
      2. Generate your Affiliate link: Your unique Affiliate link is provided within the dashboard. Copy this link for use in your promotional materials.
      3. Utilize our Affiliate banner: We offer a visually appealing banner that you can include alongside your Affiliate link. Download the banner from the Affiliate dashboard.
      4. Promote your Affiliate link and banner: Share your Affiliate link and banner on your website, social media channels, or other relevant platforms. When a visitor clicks on your link and signs up for CleanTalk AntiSpam, you’ll earn a commission.

      By transitioning to Affiliate links and our banner, you can continue to effectively promote the CleanTalk AntiSpam Affiliate program while aligning with the updated public widget removal.

      We understand that change can be challenging, and we appreciate your understanding as we work to enhance the CleanTalk Anti-Spam experience.

      If you have any questions or concerns, please don’t hesitate to contact our support team.

      Thank you for being a valued CleanTalk Anti-Spam user!

    • Critical Vulnerability Discovered in Gutenberg Blocks by Kadence Blocks Plugin

      Critical Vulnerability Discovered in Gutenberg Blocks by Kadence Blocks Plugin

      Our team at CleanTalk prioritizes the safety and security of the WordPress ecosystem. Through routine security testing, we’ve identified a critical vulnerability in the Gutenberg Blocks by Kadence Blocks plugin. This flaw poses a serious threat to WordPress websites, as it allows attackers to inject malicious code and potentially gain complete control.

      Understanding the Threat (CVE-2024-4057)

      This vulnerability, classified as Stored XSS (Cross-Site Scripting), enables attackers to embed malicious scripts directly into your website’s content. Unlike some vulnerabilities, Stored XSS doesn’t require user interaction to be triggered. This means anyone visiting your site, not just administrators, could be exposed.

      Potential Consequences of an Exploit

      • Complete Site Takeover: Attackers could create new admin accounts and seize full control of your website.
      • Data Theft: Sensitive information like user credentials, financial records, and even your website’s content could be stolen.
      • Website Defacement: Attackers could alter the appearance of your site, inject further malicious code, or display unauthorized content.
      • Persistent Backdoors: Malicious actors might install backdoors to ensure continued access even after the initial vulnerability is patched.

      Taking Action to Secure Your Website

      The most critical step is to update the Gutenberg Blocks by Kadence Blocks plugin to the latest version immediately. This update addresses the vulnerability and safeguards your website.

      CleanTalk’s Commitment to WordPress Security

      At CleanTalk, we are relentless in our pursuit of discovering and disclosing vulnerabilities to protect the WordPress community. We strongly encourage all website owners to prioritize regular security updates and implement additional security measures like:

      • Regular Vulnerability Scans: Proactive scanning helps identify and address potential threats before they are exploited.
      • Least Privilege Principle: Grant users only the permissions necessary for their roles to minimize damage in case of a compromise.
      • Security Plugins: Consider using security plugins that offer features like malware scanning, firewalls, and real-time threat monitoring.

      By working together, we can create a safer and more secure WordPress ecosystem for everyone.

      Stay vigilant. Stay secure.

    • Mitigating WordPress.com API Vulnerability

      Mitigating WordPress.com API Vulnerability

      Attention WordPress website owners! We’re excited to announce that the CleanTalk Security Plugin now effectively addresses a well-known vulnerability involving the WordPress.com API.

      This vulnerability, previously discussed here, allowed unauthorized actors to potentially trace administrator usernames through a public API endpoint. While disabling the REST API entirely would be ideal, it wasn’t always a viable option for many websites.

      The CleanTalk Team Steps Up

      We understand the critical nature of this vulnerability and the potential security risks it poses. Our development team has been working diligently to implement a comprehensive solution within the CleanTalk Security Plugin.

      This update delivers:

      • Enhanced User Data Protection: CleanTalk can now effectively block attempts to exploit the exposed API endpoint, safeguarding your administrator username and other sensitive user data.
      • Improved Overall Security: This fix is just one piece of the puzzle. CleanTalk Security offers a robust suite of security measures to keep your website safe from a wide range of threats.

      What You Can Do

      1. Update Your Plugin: Ensure you’re running the latest version of the CleanTalk Security Plugin to benefit from this critical fix and ongoing protection.
      2. Review Your Security Practices: Consider implementing additional security measures like strong password policies and user access restrictions for an extra layer of defense.

      CleanTalk: Committed to Your Security

      We at CleanTalk are dedicated to providing the best possible security for your WordPress website. We continuously refine our plugin to address both emerging and long-standing vulnerabilities.

      For further information on CleanTalk Security and its capabilities, please refer to the plugin’s documentation.

      This revised announcement emphasizes the team’s effort in resolving a known issue and highlights the broader security benefits of the CleanTalk Security Plugin.

    • Strengthen Your WordPress Security with Built-in Vulnerability Checks by CleanTalk

      Strengthen Your WordPress Security with Built-in Vulnerability Checks by CleanTalk

      The CleanTalk Security plugin now offers built-in plugin vulnerability checks, empowering you to safeguard your WordPress website proactively. Just a friendly reminder if you haven’t try it till now: feel free to pick up the plugin and install it according to these instructions

      While plugins add valuable functionality, they can also introduce security risks if vulnerabilities exist. To address this, CleanTalk regularly scans popular plugins and integrates the findings directly into the Security plugin.

      Here’s how it benefits you:

      • Real-time Vulnerability Insights: Get notified within the plugin itself whenever potential vulnerabilities are detected in your active plugins.
      • Proactive Security Measures: Take immediate action to address vulnerabilities and minimize the risk of attacks.
      • Simplified Security Management: No need to visit external platforms for vulnerability information; it’s all accessible within the plugin.

      This integration strengthens your WordPress security by informing you about potential threats and allowing you to take immediate action.

      Stay Updated, Stay Secure!

      The CleanTalk Security plugin continues to evolve, offering comprehensive security solutions for your WordPress site. Remember to update the plugin to benefit from the latest features and vulnerability checks.