WordPress - Security Intelligence

A small business owner using a laptop in a flower shop.

news

Websites Were Attacked 44 Times a Day in Q4 2017, Small Business Cybersecurity Report Reveals

A recent study suggested that small business cybersecurity threats are on the rise, as evidenced by the fact that the average small business website sustained 44 attacks per day during Q4 2017.

March 23, 2018 | By Shane Schick

news

A blogging platform displayed on a computer screen.

news

WordPress Issues Security Patch to Mitigate SQL Injection

With its latest update, WordPress patched a vulnerability that could enable malicious plugin and theme developers to execute SQL injection attacks.

November 2, 2017 | By Larry Loeb

news

Display Widgets Plug-In Conducted Malware Attack Across 200,000 WordPress Sites

Approximately 200,000 websites running WordPress have been affected by a malware attack that used the Display Widgets plug-in to collect IP addresses.

September 15, 2017 | By Shane Schick

news

A long hallway in a computer-server room.

news

WordPress Sites at Risk From PHP Code Execution

New attacks against unfinished installations of WordPress aim to give attackers admin access and the opportunity to run PHP code.

July 18, 2017 | By Mark Samuels

news

A blogger entering text into a content management system on a latop.

article

Relying on Data to Mitigate the Risk of WordPress Website Hijacking

To protect their WordPress sites from scammers, administrators must proactively patch and monitor their installations to weed out unwanted content.

May 30, 2017 | By Mark Usher

article

A hand taking a cookie from a glass jar.

news

Phony WordPress Domain Steals Cookies to Fool Web Admins

Cybercriminals have been stealing cookies and using a fraudulent WordPress API to impersonate users and take control of victims' browsing sessions.

May 15, 2017 | By Shane Schick

news

A programmer entering code into a desktop computer.

news

PHP Will Incorporate Libsodium for Crypto

Starting with the release of version 7.2 at the end of this year, the core of PHP will use Libsodium by default for routine cryptographical operations.

February 22, 2017 | By Larry Loeb

news

IBM X-Force researchers recently announced that they have seen a massive increase in the use of webshell attacks against content management systems. They also recommended several remediation techniques to reduce the risk associated with this threat.

article

The Webshell Game Continues

IBM X-Force researchers have noted a dramatic increase in the use of malicious webshell attacks throughout the first half of 2016.

July 8, 2016 | By Dave McMillen

article

A simple Google search may reveal whether a website has been subjected to a WordPress hack that results in user redirects. Unfortunately, Sucuri reported that the presence of the malicious code on a website may be a sign of other infections.

news

WordPress Hack Redirects Users Randomly

Sucuri recently discovered a new WordPress hack that redirects users to malicious domains. Luckily, there are relatively easy ways to discover infections.

May 9, 2016 | By Larry Loeb

news

Symantec found that risks to data security continued unabated in 2015, especially those zero-day vulnerabilities that can surprise enterprises. Other significant trends throughout the industry included problems with website plugins and breach disclosures.

news

New Report Finds Zero-Day Vulnerabilities Increased in 2015

A recent threat report from Symantec found that zero-day vulnerabilities were found about once a week in 2015, representing a big increase from 2014.

April 15, 2016 | By Larry Loeb

news

Tag: WordPress