November 2, 2017 WordPress Issues Security Patch to Mitigate SQL Injection 2 min read - With its latest update, WordPress patched a vulnerability that could enable malicious plugin and theme developers to execute SQL injection attacks.
July 18, 2017 WordPress Sites at Risk From PHP Code Execution 2 min read - New attacks against unfinished installations of WordPress aim to give attackers admin access and the opportunity to run PHP code.
Software Vulnerabilities May 30, 2017 Relying on Data to Mitigate the Risk of WordPress Website Hijacking 9 min read - To protect their WordPress sites from scammers, administrators must proactively patch and monitor their installations to weed out unwanted content.
May 15, 2017 Phony WordPress Domain Steals Cookies to Fool Web Admins 2 min read - Cybercriminals have been stealing cookies and using a fraudulent WordPress API to impersonate users and take control of victims' browsing sessions.
May 9, 2016 WordPress Hack Redirects Users Randomly 2 min read - Sucuri recently discovered a new WordPress hack that redirects users to malicious domains. Luckily, there are relatively easy ways to discover infections.
February 10, 2016 Bitcoin Lending Site LoanBase Hacked Through WordPress Vulnerability 2 min read - Cybercriminals exploited a WordPress vulnerability to breach LoanBase, a bitcoin lending site, and they may have gained access to user info.
February 8, 2016 TeslaCrypt Ransomware Targets WordPress Sites 2 min read - WordPress sites are being affected by a Teslacrypt ransomware attack, which could leave users with out-of-date plugins or browsers exposed.
January 11, 2016 New Year, New Problems: CMS Vulnerabilites Take on 2016 2 min read - Several vulnerabilities have recently been discovered — and patched — in CMS software WordPress and Drupal. What should users know about the risks?
August 14, 2015 New WordPress XSS Vulnerability Crosses the Privilege Line 2 min read - A new XSS vulnerability set for WordPress raises sersious security questions, but it's not the only set of flaws to come to light recently.
July 29, 2015 XSS Vulnerability Crossed Out in New WordPress Version 2 min read - WordPress update 4.2.3 crossed out a critical XSS vulnerability — the latest in a long line of flaws that put websites running the CMS at risk.