CleanTalk's blog

    Sign up

    Category: News and Updates

    • Say Goodbye to Checkout Spam with CleanTalk for Opencart 4!

      Say Goodbye to Checkout Spam with CleanTalk for Opencart 4!

      Hey there, Opencart store owners! Are spammers giving you a headache? Let us put a smile on your face. CleanTalk Anti-Spam plugin for Opencart 4 is your new best friend in the fight against online nuisances!

      Imagine a world where your Opencart checkout form is protected from spam and fraudulent orders. Well, guess what? That world is here! Our clever little plugin works tirelessly behind the scenes to keep your store safe and your customers happy.

      Here’s why you’ll love CleanTalk:

      1. Spam-Be-Gone: Watch those annoying spam attempts bounce right off your checkout form. It’s like having a bouncer for your online store!
      2. Fraud Fighter: Say “not today” to those sneaky fraud orders. CleanTalk’s got your back, 24/7.
      3. Easy-Peasy Integration: No tech wizardry required! CleanTalk plays nice with Opencart 4, making setup a breeze.
      4. Happy Customers, Happy You: With a smooth, spam-free checkout, your real customers will love shopping with you even more.
      5. Time-Saver Extraordinaire: Less time cleaning up spam means more time growing your business. Who doesn’t want that?

      But don’t just take our word for it! Give CleanTalk a spin and see the difference for yourself. Your Opencart store deserves the best protection from checkout form spam and fraud orders, and that’s exactly what we deliver.

      Ready to kick spam to the curb and give your store the shield it deserves? Hop on board with CleanTalk today – because a happy checkout is a protected checkout!

    • Attention CleanTalk Anti-Spam Users! Important Update Regarding Public Widget

      Attention CleanTalk Anti-Spam Users! Important Update Regarding Public Widget

      We’re writing to inform you that the public widget for CleanTalk Anti-Spam will be removed from the plugin and no longer be supported after August 1, 2024.

      What does this mean for you?

      The public widget, which is typically displayed on public pages and demonstrates the number of spam attacks, is no longer considered compatible with modern WordPress development practices and has seen low user demand. As a result, we’re removing it from the plugin to ensure optimal performance, streamline the user experience, and focus on core functionalities. This removal also helps us stay aligned with future WordPress versions.

      What action should you take?

      While the public widget will no longer be available after August 1, 2024, CleanTalk Anti-Spam’s core functionality remains unchanged and will continue to provide robust spam protection for your WordPress site.

      Here’s what you can do:

      1. No action required: If you don’t utilize the public widget, you don’t need to take any further action. CleanTalk Anti-Spam will continue to operate seamlessly.
      2. Review alternative widget usage: If you’ve been using the public widget, we recommend exploring alternative methods for interacting with CleanTalk Anti-Spam’s features. These may include accessing settings pages or utilizing shortcodes.

      Affiliate Program Guidance

      If you’ve been using the public widget to promote the CleanTalk AntiSpam Affiliate program, we recommend transitioning to using Affiliate links along with our banner. This method provides a more streamlined and effective way to promote the program.

      To get started with Affiliate links:

      1. Access your CleanTalk Affiliate Dashboard: Log in to your CleanTalk account and navigate to the Affiliate program section.
      2. Generate your Affiliate link: Your unique Affiliate link is provided within the dashboard. Copy this link for use in your promotional materials.
      3. Utilize our Affiliate banner: We offer a visually appealing banner that you can include alongside your Affiliate link. Download the banner from the Affiliate dashboard.
      4. Promote your Affiliate link and banner: Share your Affiliate link and banner on your website, social media channels, or other relevant platforms. When a visitor clicks on your link and signs up for CleanTalk AntiSpam, you’ll earn a commission.

      By transitioning to Affiliate links and our banner, you can continue to effectively promote the CleanTalk AntiSpam Affiliate program while aligning with the updated public widget removal.

      We understand that change can be challenging, and we appreciate your understanding as we work to enhance the CleanTalk Anti-Spam experience.

      If you have any questions or concerns, please don’t hesitate to contact our support team.

      Thank you for being a valued CleanTalk Anti-Spam user!

    • Mitigating WordPress.com API Vulnerability

      Mitigating WordPress.com API Vulnerability

      Attention WordPress website owners! We’re excited to announce that the CleanTalk Security Plugin now effectively addresses a well-known vulnerability involving the WordPress.com API.

      This vulnerability, previously discussed here, allowed unauthorized actors to potentially trace administrator usernames through a public API endpoint. While disabling the REST API entirely would be ideal, it wasn’t always a viable option for many websites.

      The CleanTalk Team Steps Up

      We understand the critical nature of this vulnerability and the potential security risks it poses. Our development team has been working diligently to implement a comprehensive solution within the CleanTalk Security Plugin.

      This update delivers:

      • Enhanced User Data Protection: CleanTalk can now effectively block attempts to exploit the exposed API endpoint, safeguarding your administrator username and other sensitive user data.
      • Improved Overall Security: This fix is just one piece of the puzzle. CleanTalk Security offers a robust suite of security measures to keep your website safe from a wide range of threats.

      What You Can Do

      1. Update Your Plugin: Ensure you’re running the latest version of the CleanTalk Security Plugin to benefit from this critical fix and ongoing protection.
      2. Review Your Security Practices: Consider implementing additional security measures like strong password policies and user access restrictions for an extra layer of defense.

      CleanTalk: Committed to Your Security

      We at CleanTalk are dedicated to providing the best possible security for your WordPress website. We continuously refine our plugin to address both emerging and long-standing vulnerabilities.

      For further information on CleanTalk Security and its capabilities, please refer to the plugin’s documentation.

      This revised announcement emphasizes the team’s effort in resolving a known issue and highlights the broader security benefits of the CleanTalk Security Plugin.

    • Revealing Vulnerabilities: The All-in-One SEO Plugin Dilemma

      Revealing Vulnerabilities: The All-in-One SEO Plugin Dilemma

      In the expansive domain of WordPress, a critical security flaw has been unveiled within the widely-utilized All-in-One SEO plugin. Known by its identifier, CVE-2024-3368, this vulnerability exposes a concerning loophole that malicious actors can exploit through Stored Cross-Site Scripting (XSS) attacks, jeopardizing the security of numerous websites. The trouble concerns all versions of All-in-One SEO older than 4.6.1.1.

      This flaw was unearthed during routine security evaluations, shedding light on a troubling scenario where unauthorized individuals can inject harmful JavaScript code directly into WordPress posts. This unauthorized access allows for the manipulation of administrative privileges, potentially leading to serious repercussions such as website tampering and unauthorized data access.

      In response to this alarming revelation, immediate action is crucial. WordPress website owners are strongly advised to promptly update their All-in-One SEO plugin to the latest version, fortified with patches to address this vulnerability. Furthermore, implementing stringent security measures, including regular audits and access controls, is essential to mitigate the risk of exploitation.

      Behind the scenes, CleanTalk remains dedicated to safeguarding the WordPress ecosystem. Through vigilant monitoring of plugins and the provision of timely alerts, CleanTalk aims to empower website owners with the necessary tools and knowledge to defend against cyber threats effectively and preserve the integrity of their digital platforms.

    • Magento 2 Security Extension Released

      Magento 2 Security Extension Released

      Good news for website owners on Magento 2.0 or newer. We have updated our UniForce extension, and now it works with Magento 2.X.

       

      What exactly the extension does

      UniForce is an extension that can be installed on any PHP site, CMS, or framework. We also call Uniforce a Universal security plugin for every CMS.

      • Malware scanning
        One-time and daily automatic tests for existing Malware and viruses among the site’s files.

      • Firewall
        Firewall – uses a database of IP addresses of those who attempt to hack sites, personal IP lists, networks, and countries. These lists forbid visiting the site, which means you can’t get to the site from these IPs.

      • XSS, SQL, and exploit-based attacks
        Protect a website from exploit attacks, XSS attacks, and SQL injections.

      • Brute-force protection
        Protect a website from password guessing (brute-force).

       

      How to install UniForce on Magento 2.0 or newer

      We have prepared a detailed 8-step instruction for you on how to install UniForce on your Magento site.

    • We have added a new feature to Security Protection – File System Watcher

      We have added a new feature to Security Protection – File System Watcher

      Introducing File System Watcher, a new feature of our Security protection. It helps to track changes in your site files to detect suspicious ones in time. File System Watcher has already been added to all plans and is enabled by default.

       

      How the feature works

      The feature takes a snapshot of the file system during a selected period and allows you to monitor which files on your site have been modified between selected dates. The snapshots are stored for 7 days.

      You can control the frequency of snapshots in the plugin settings. Alternatively, you can run the snapshot immediately by clicking the Create File System snapshot button and refreshing the page.

       

      How to use the feature and see results

      1. Go to your WordPress site dashboard and go to SettingsSecurity by CleanTalkFile System Watcher.

      2. Select the dates you want to compare and click the Compare button.

      3. Click the View link and you will see the code for the modified version of the specified file.

      To use this feature you have to have a Security & Malware scan plugin installed to your WordPress. Feel free to download it in WordPress catalog.

    • Nextend Social Login and Register spam protection

      Nextend Social Login and Register spam protection

      Nextend Social Login and Register is a very useful plugin when you need to set up, for example, login or registration via Facebook. Still even while using this plugin spam registrations happen, so be sure to use some anti-spam protection. For example CleanTalk Anti-Spam will guarantee your Nextend plugin spam protection in about 5 minutes.

      Once CleanTalk Anti-Spam plugin is installed it starts to protect all of the existing forms on your WordPress website. It may not only be Nextend but many others.

      Download CleanTalk Anti-Spam plugin | Download Nextend Social Login and Register 

      How to install CleanTalk Anti-Spam plugin

      To install the Anti-Spam plugin, go to your WordPress admin panelPluginsAdd New.

      Then enter «СleanTalk» in the search box and click the Install button for «Spam protection, Anti-Spam, FireWall by CleanTalk».

      After installing the plugin, click the «Activate»‎ button.

      After it is done go to the plugin settings and click the «Get Access Key Automatically» button. Then just click the «Save Settings»‎ button.

      After that, go to Settings → Advanced → Forms to protect and switch on the Protect external forms option.

      That’s it! From now your WordPress website and Nextend Social Login and Register plugin are protected from spam.

      How to check your Nextend plugin spam protection in about 5 minutes

      You can test the work of Anti-Spam protection for your Nextend plugin by using a test email s @ cleantalk.org (without spaces). First, open the form in an Incognito browser tab. Fill in all the required form fields and send a form. After submitting the form, you will see a block message about the block on the form submission.

      If you have any questions, add a comment and we will be happy to help you.

      Create your Cleantalk account – Register now and enjoy your spam-free using of Nextend Social Login and Register.

      Update

      The protection works only for website visitors, not for website admins. Be sure to test the form protection using Incognito mode.

      You may view a complete list of CleanTalk Anti-Spam plugin features here. https://cleantalk.org/help/introduction 

      WordPress spam protection

    • Anti-Spam pricing update 2023

      Anti-Spam pricing update 2023

      In celebration of the upcoming holiday season, we are excited to announce a limited-time offer for the Anti-Spam. We are cutting prices on all plans until November 26th, 2023. The offer is valid for all plans from 1 to 40 websites.

      1
      website      		 3
      websites      		 5
      websites      		 10
      websites      		 20
      websites      		 30
      websites      		 40
      websites
                   
      $12.00 $24.00 $36.00 $69.00 $115.00 $160.00 $200.00
      $8/year $16/year $24/year $46/year $88/year $126/year $160/year

      Create your account now, join thousands of happy users, and forget about spam once and for all. Happy holidays and secure browsing with CleanTalk!

      Go to my Dashboard

       

      Update, effective date December 1, 2023

      We are happy to announce that discount is extended till December 31, 2023!

    • How to Stop Spam on WordPress – Delivra Forms

      How to Stop Spam on WordPress – Delivra Forms

      CleanTalk added spam protection for Delivra Forms using direct form integration. So in case, if you prefer using Delivra Forms be sure to use the most effective Anti-Spam plugin. Read the guide below and learn 4 steps to protect your Delivra Forms from spam.

      Once the CleanTalk Anti-Spam plugin is installed it starts to protect all of the existing forms on your WordPress website. It may not only be Delivra Forms but also many others.

      Download CleanTalk Anti-Spam plugin | Download Delivra Forms 

      How to install CleanTalk Anti-Spam plugin

      To install the Anti-Spam plugin, go to your WordPress admin panelPluginsAdd New.

      Then enter «CleanTalk» in the search box and click the Install button for «Spam protection, Anti-Spam, FireWall by CleanTalk».

      After installing the plugin, click the «Activate»‎ button.

      After it is done go to the plugin settings and click the «Get Access Key Automatically» button. Then just click the «Save Settings»‎ button.

      After that, go to Settings Advanced Forms to protect and switch on the Protect external forms option.

      In Settings Advanced go to Data Processing and switch Cookies to alternative mechanism. Then press the Save Changes button below.

      When done, please add attribute id=”delivra-external-form” to the form code as shown in the screenshot below.

      id="delivra-external-form"

      That’s it! From now you know, how to completely protect your Delivra Forms from spam.

      How to check spam protection for Delivra Forms

      You can test the work of Anti-Spam protection for your Delivra Forms by using a test email s @ cleantalk.org (without spaces). First, open the form in an Incognito browser tab. Fill in all the required form fields and send a form. After submitting the form, you will see a block message about the block on the form submission.

      If you have any questions, add a comment and we will be happy to help you.

      Create your CleanTalk account – Register now and protect your Delivra Forms from spam in 5 minutes

      Update

      The protection works only for website visitors, not for website admins. Be sure to test the form protection using Incognito mode.

      Need help with settings or missed spam?

      If you have any issues with the plugin settings, test submissions or missed spam signups, feel free to ask for help in the comments section down below.

      Additional features

      • CleanTalk protects all forms at once: comments, registrations, feedbacks, contacts, reviews.
      • Installation takes about 1-2 minutes.
      • Smart 99% protection against spambots.
      • Always online – 24/7 technical support.
      • Logs, SpamFireWall, personal lists, country filters, stop-words, and many others.

      Discover the complete list of CleanTalk Anti-Spam plugin features here.

    • We Have Reduced the Malware Code Analysis Time from 36 Hours to 10 Minutes

      We Have Reduced the Malware Code Analysis Time from 36 Hours to 10 Minutes

      In case Security Malware Scanner detects a suspicious file, the file is sent for analysis and, earlier this analysis was done manually by our team.

      For 3 months now the files have been processed by our AI and the average analysis time has decreased from 36 hours to 10 minutes. However, we continue to double-check the results manually in order to guarantee perfect quality. This allowed us to raise the accuracy of the analysis and increase its speed tremendously.

      And this is just the beginning. The AI-driven machine analysis data will be used to train the algorithm further and improve the scanner’s performance.