Category
WordPress Security
A successful WordPress security strategy should include steps to strengthen the WordPress login. In this post, we cover the five simple rules for better WordPress login security. The great thing about WordPress is how it makes creating a website accessible… Continue Reading →
If you own a WordPress website, you should be aware of potential WordPress security vulnerabilities. Just like locking the doors of your house, investing in an alarm system and paying for insurance, your website should have security and safety measures in… Continue Reading →
Using a WordPress security plugin like iThemes Security Pro is a great way to secure your WordPress site. In this post, we cover 5 iThemes Security tips to help secure your WordPress website. WordPress security can seem like a daunting… Continue Reading →
WordPress core version 5.2.3 has just been released. This is a security release which contains several fixes. I’m going to detail each of them below and unpack what each fix means and add any additional info that may be relevant. Seven… Continue Reading →
The iThemes Security Pro plugin just added a new way for you to lock down your WordPress site while making it easier for you to log in: Passwordless Logins. iThemes Security Pro already offers several ways to secure user logins… Continue Reading →
Several new WordPress plugin and theme vulnerabilities were disclosed during the last half of August, so we want to keep you aware. In this post, we cover recent WordPress plugin and theme vulnerabilities and what to do if you are… Continue Reading →
Here’s the reality about running a business site: Nobody is truly ever safe. Even the most prominent brands, with millions of dollars backing their websites, have experienced costly data breaches throughout the years. And imagine what these online threats could… Continue Reading →
In July, we reported on a malvertising campaign which was distributing redirect and popup code through a number of public vulnerabilities affecting the WordPress ecosystem. As mentioned in the article, we’ve continued tracking this threat for new or changing activity…. Continue Reading →
Over the past few weeks, our Threat Intelligence team has been tracking an active attack campaign targeting a selection of new and old WordPress plugin vulnerabilities. These attacks seek to maliciously redirect traffic from victims’ sites to a number of… Continue Reading →
Several new WordPress plugin and theme vulnerabilities were disclosed during the first half of August, so we want to keep you aware. In this post, we cover recent WordPress plugin and theme vulnerabilities and what to do if you are… Continue Reading →
The benefits of this WordPress security guide are two fold: Learn exactly what you need to know about WordPress security in 2019. Understanding WordPress security helps you adopt a security-oriented […]
WordPress file permissions and ownership play an integral role in the overall security of your WordPress website, which is why you should be sure to get them right. In this post, we’ll cover all you need to know about WordPress… Continue Reading →
New WordPress plugin vulnerabilities were disclosed during the last half of July, so we want to keep you aware. We divide the WordPress Vulnerability Roundup into four different categories: 1. WordPress core 2. WordPress Plugins 3. WordPress Themes 4. Breaches… Continue Reading →
Having your WordPress site hacked is not something you ever want to experience, but it happens more often that we’d like. There are ways to help prevent hacks, but if it happens to you, here are a few things you… Continue Reading →
The Defiant Threat Intelligence team has identified a malvertising campaign which is causing victims’ sites to display unwanted popup ads and redirect visitors to malicious destinations, including tech support scams, malicious Android APKs, and sketchy pharmaceutical ads. This type of… Continue Reading →
