In our earlier post, we issued a warning to users of the Social Warfare plugin regarding a zero-day vulnerability affecting their sites. At this time, the plugin’s developers have issued a patch for the flaw. All users are urged to update to version 3.5.3 immediately.
If you are a small business owner or manager, you have a target on your back. You face a special set of risks from cyber-crime exploits. Most often, you do not have the financial resources to afford a full time IT support employee. You do not have the budget for expensive Intrusion Prevention Systems (IPS), or Security Information and Event Management (SIEM) systems. You might not even have a firewall, ...Continue Reading →
I was interviewed for an articles in Financier World magazine, and the article appears in the April 2019 issue. The article is titled Cyber posture: the value proposition of security.
I recently reported on New WordPress Security Options, and my article was picked up and republished ...Continue Reading →
I have developed some expertise around the area of WordPress security. One of my clients has a WordPress site under development, and recently the web designer changed the name of the login URL from https://clientsite.com/wp-admin to https://clientsite.com/A9u3ycGH37. Basically, the wp-admin page name had been replaced with random characters. I found out when I tried to log in using the usual URL. I ...Continue Reading →
Are you able to make it to my class next Tuesday?
Bob Weiss | The WyzCo Group
Like most website owners, security is never at the top of our priorities. It’s only when someone we know gets hacked that we realize how common it is for websites to be compromised by ...Continue Reading →
It is our recommendation that site owners using Total Donations delete–not just deactivate–the vulnerable plugin as soon as possible to secure their sites. The following article details the issues present in Total Donations, as well as the active attacks against the plugin. We’ll also take a look ...Continue Reading →
WordPress version 5 was released a month ago on December 6. There have already been some minor upgrades to fix some security issues. If your WordPress site is running any version of WordPress 4, you probably need to upgrade.
Before you upgrade your WordPress site to version 5, you need to take a look at the new page editor, code named “Gutenberg.” If ...Continue Reading →
This entry was posted in Research, Wordfence, WordPress Security on December 5, 2018
The Defiant Threat Intelligence team recently began tracking the behavior of an organized brute force attack campaign against WordPress sites. This campaign has created a botnet of infected WordPress websites to perform its attacks, ...Continue Reading →
You do not have to give your passcode to the police. The courts say it amounts to self-incrimination. The government isn’t really after the password, after all; it’s after any potential evidence it protects. In other words: fishing expedition.
Continue Reading →
Today we are featuring a guest column written by Jann Chambers at UK Web Host Review.
If there is one thing that all website owners today need to be concerned about it is website security. This is especially the case if you take online payments for your products and services.
You only need to do a quick search online and you will ...Continue Reading →