September 15, 2017 Display Widgets Plug-In Conducted Malware Attack Across 200,000 WordPress Sites 2 min read - Approximately 200,000 websites running WordPress have been affected by a malware attack that used the Display Widgets plug-in to collect IP addresses.
July 18, 2017 WordPress Sites at Risk From PHP Code Execution 2 min read - New attacks against unfinished installations of WordPress aim to give attackers admin access and the opportunity to run PHP code.
Software Vulnerabilities May 30, 2017 Relying on Data to Mitigate the Risk of WordPress Website Hijacking 9 min read - To protect their WordPress sites from scammers, administrators must proactively patch and monitor their installations to weed out unwanted content.
May 15, 2017 Phony WordPress Domain Steals Cookies to Fool Web Admins 2 min read - Cybercriminals have been stealing cookies and using a fraudulent WordPress API to impersonate users and take control of victims' browsing sessions.
February 22, 2017 PHP Will Incorporate Libsodium for Crypto 2 min read - Starting with the release of version 7.2 at the end of this year, the core of PHP will use Libsodium by default for routine cryptographical operations.
X-Force July 8, 2016 The Webshell Game Continues 5 min read - IBM X-Force researchers have noted a dramatic increase in the use of malicious webshell attacks throughout the first half of 2016.
May 9, 2016 WordPress Hack Redirects Users Randomly 2 min read - Sucuri recently discovered a new WordPress hack that redirects users to malicious domains. Luckily, there are relatively easy ways to discover infections.
April 15, 2016 New Report Finds Zero-Day Vulnerabilities Increased in 2015 2 min read - A recent threat report from Symantec found that zero-day vulnerabilities were found about once a week in 2015, representing a big increase from 2014.
Threat Intelligence April 14, 2016 Got WordPress? PHP C99 Webshell Attacks Increasing 5 min read - IBM MSS X-Force researchers found that C99 webshell attacks are increasing, particularly against content management systems such as WordPress.
February 10, 2016 Bitcoin Lending Site LoanBase Hacked Through WordPress Vulnerability 2 min read - Cybercriminals exploited a WordPress vulnerability to breach LoanBase, a bitcoin lending site, and they may have gained access to user info.