Jonas Lejon

How to Break Into WordPress Installations, and How Implementing 2-Factor-Authentication Can Prevent It

How to Break Into WordPress Installations, and How Implementing 2-Factor-Authentication Can Prevent It

Author: Luke Stephens Like any system, there are many ways to break into a WordPress installation, to name a few:  Exploiting an out of date, vulnerable WordPress core Exploting vulnerable plugins or themes Man-in-the-middle attacks Social engineering One of the most common ways to break into a WordPress installation is to simply find the password …

How to Break Into WordPress Installations, and How Implementing 2-Factor-Authentication Can Prevent It Read More »

Eight-Year Study Shows the Dark Side of WordPress Plugins

A recent study has revealed that spammers have infected 47,000+ WordPress plugins since 2012. This is a significant number, given that plugins are a fundamental component of website development. Researchers used the web development tool YODA to track the origins of the malware, and they found that every compromised website contained at least two malicious …

Eight-Year Study Shows the Dark Side of WordPress Plugins Read More »

WordPress 6.0.2 Security and Maintenance Release

WordPress 6.0.2 Security and Maintenance Release

A new security and maintenance WordPress-release features 12 bug fixes on Core, 5 bug fixes for the Block Editor, and 3 security fixes. This new version has version number 6.0.2. Because this release contains security fixes, it is recommended that you update all your sites immediately. All versions since WordPress 3.7 have also been updated. If you have …

WordPress 6.0.2 Security and Maintenance Release Read More »

Best Practices for Securing Your WordPress Site

Best Practices for Securing Your WordPress Site

Author: Devansh Bordia WordPress is the world’s most popular content management platform, used on 45% of websites. This also makes it an attractive target for malicious attackers! In 2021, more than 1.5 million WordPress websites were compromised. In this article, we will cover many ways that your WordPress instance may be attacked, and how to …

Best Practices for Securing Your WordPress Site Read More »

Discovering Vulnerabilities in WordPress Plugins at Scale

Author: Luke (@hakluke) Stephens It always blows me away to think that WordPress runs 43% of all websites, including those without a content management system (CMS) 🤯. A single open source project is responsible for such a huge part of the internet! It’s interesting to think about what might happen if a severe vulnerability was …

Discovering Vulnerabilities in WordPress Plugins at Scale Read More »

New to Monitoring Your Site for Bad Behavior and are Startled by the Numbers? Don’t Panic!

I have many years of working with clients and one of the most common concerns that comes up after putting security in place is regarding the startling number of how many baddies are constantly attacking their site, especially on WordPress. Over the years, I’ve been asked dozens of times questions like: “I see hundreds of …

New to Monitoring Your Site for Bad Behavior and are Startled by the Numbers? Don’t Panic! Read More »