WordPress core is solid — what you install in it may not be. How secure is WordPress? Against a backdrop of steadily increasing global cyberattacks and sophisticated cybercrime targetting more than half of all small to mid-sized businesses (SMBs) in… Continue Reading →
Vulnerable plugins and themes are the #1 reason WordPress websites get hacked. The weekly WordPress Vulnerability Report powered by WPScan covers recent WordPress plugin, theme, and core vulnerabilities and what to do if you run one of the vulnerable plugins or themes… Continue Reading →
We’re adding hCaptcha and Cloudflare’s Turnstile to iThemes Security Pro alongside the existing Google reCAPTCHA option. (Turnstile is available for Kadence in its CAPTCHA plugin now too.) Why are we doing this, and why should you use a CAPTCHA? Which… Continue Reading →
Today, the Wordfence Threat Intelligence team is releasing our 2022 State of WordPress Security Report as a free White Paper. In our report, we look at changes in the threat landscape, analyze impactful trends, and provide recommendations based on our… Continue Reading →
Vulnerable plugins and themes are the #1 reason WordPress websites get hacked. The weekly WordPress Vulnerability Report powered by WPScan covers recent WordPress plugin, theme, and core vulnerabilities and what to do if you run one of the vulnerable plugins or themes… Continue Reading →
Clickjacking is a malicious web exploit that has been around since the first websites made their way to the Internet. Clickjackers exploit methods for embedding one webpage inside another. Combined with deceptive social engineering, clickjacking attacks maintain a ridiculously high… Continue Reading →
Vulnerable plugins and themes are the #1 reason WordPress websites get hacked. The weekly WordPress Vulnerability Report powered by WPScan covers recent WordPress plugin, theme, and core vulnerabilities and what to do if you run one of the vulnerable plugins or themes… Continue Reading →
Common WordPress errors, such as the critical WordPress error or the error establishing a database connection, serve an important purpose in the WordPress ecosystem — alerting you that something on your website went wrong. Website downtime is frustrating, but WordPress… Continue Reading →
If you own a website, you need to protect it. Like personal computers, web servers — and the software running on them — are constantly probed and attacked by hackers. Because of this, it’s important to keep hackers and other… Continue Reading →
Vulnerable plugins and themes are the #1 reason WordPress websites get hacked. The weekly WordPress Vulnerability Report powered by WPScan covers recent WordPress plugin, theme, and core vulnerabilities and what to do if you run one of the vulnerable plugins or themes… Continue Reading →
You’ve probably encountered a two-step login authentication process in online banking and any sites that require the highest security for their users. Because WordPress supports two-factor authentication (2FA), you can have the same level of security as a bank. Whether… Continue Reading →
Vulnerable plugins and themes are the #1 reason WordPress websites get hacked. The weekly WordPress Vulnerability Report powered by WPScan covers recent WordPress plugin, theme, and core vulnerabilities and what to do if you run one of the vulnerable plugins or themes… Continue Reading →
Vulnerable plugins and themes are the #1 reason WordPress websites get hacked. The weekly WordPress Vulnerability Report powered by WPScan covers recent WordPress plugin, theme, and core vulnerabilities and what to do if you run one of the vulnerable plugins or themes… Continue Reading →
Online credit card theft has become a major security concern for the whole eCommerce industry, with card skimming malware targeting all leading website-building platforms. Initially discovered on Magento stores, credit card skimmers have quickly evolved, making WordPress websites a primary… Continue Reading →
In this week’s iThemes Vulnerability Report, you’ll note that there is an unpatched vulnerability in WordPress core. This vulnerability was reported by Thomas Chauchefoin, and at this time, it affects all versions of WordPress. However, probable exploitation of this vulnerability… Continue Reading →
Vulnerable plugins and themes are the #1 reason WordPress websites get hacked. The weekly WordPress Vulnerability Report powered by WPScan covers recent WordPress plugin, theme, and core vulnerabilities and what to do if you run one of the vulnerable plugins or themes… Continue Reading →
PHP 8.2.0 made its debut on December 8, 2022. As a major update, it brings performance improvements, simpler syntax, and greater type safety with null, false, and true as standalone types. One of the biggest changes likely to challenge WordPress… Continue Reading →
Although you’re not aware of anything changing on your WordPress site, suddenly, there’s a “Dangerous Site” warning by your site’s URL in your browser’s address bar, and you’re not sure what happened. A huge red warning screen appears on Google… Continue Reading →
Vulnerable plugins and themes are the #1 reason WordPress websites get hacked. The weekly WordPress Vulnerability Report powered by WPScan covers recent WordPress plugin, theme, and core vulnerabilities and what to do if you run one of the vulnerable plugins or themes… Continue Reading →
