Assisting You in Making the Most of Your Online Presence

At White Fir Design we are focused on assisting you in making sure that you make the most of your online presence. Whether you are a new business, an established business, or a non-profit organization we provide services that will assist you in creating or improving online presence. We provide an assortment of web design, security, and marketing services. We provide the technical expertise needed to quickly and easily create or improve your online presence, so that you can spend your time on what you do best. We work hard to provide you value for your investment in your online presence and we make sure that you are fully satisfied with the work we do.


Latest Blog Posts


Hackers Using Insecure Magento Extensions to Access Magento Admin Login Page Without Knowing Normal Address
While reviewing the log files while cleaning up a hacked Magento website recently we ran across a reminder that a common security practice isn't full proof. With the Magento software and some other software the software has a built in capability to use a non-standard address for the login page for the admin portion of the website. With other software that is commonly promoted security feature to b... Read More

Hacker Using SQL Injection Vulnerability to Add "magentoupdate" Admin Account to Magento Websites
As is a common occurrence, we were recently hired to re-clean a hacked website that the security company Sucuri, which is owned by GoDaddy, had repeatedly failed to properly clean. This time it was a Magento based ecommerce website we were cleaning. As is standard issue in those situations they had missed malicious code that should have been easy to find. What we also found was that the hacker had... Read More

A Web Application Firewall (WAF) is Not the Way to Deal With the Reoccurrence of a Hack of a Website
These days quite a bit of our business dealing with the cleanup of hacked websites is re-cleaning websites after other security companies didn't clean them up properly before us. Troublingly we recently noticed a company that offers to clean up websites, ASTRA Security, treating that as a normal result and using it to promote using web application firewall (WAF), which they also sell: Even after ... Read More

ASTRA Security is Promoting Cleaning Up Hacked Magento Websites Despite Not Knowing Basics of Dealing With Them
While looking around to see if others had already written blog posts about something we ran across while dealing with a hacked website we noticed something from a security company, ASTRA Security, that seems like worth noting, since the company appears to not have a basic understanding of what they are doing. In a post that seems to be built around promoting having that company clean up hacked Ma... Read More

index.php Files with the Comment "Silence is golden." on a WordPress Website Are Not Malware
When it comes to dealing with hacked websites a lot of people would be best off leaving it to professionals (assuming you can find one, among all the unqualified companies), as it is easy for people to get very confused about what is going on. We recently had someone contact us about cleaning up a hacked WordPress website where they were saying that part of the malware was that index.php files had... Read More