An Overview of Basic WordPress Hardening
Ben Martin We have discussed in the past how out-of-the-box security configurations tend to not be very secure. This is usually true for all software and WordPress…
Browsing Category
Security Education
662 posts
Malicious Redirects Through Bogus Plugin
Recently we have been seeing a rash of WordPress website compromises with attackers abusing the plugin upload functionality in the wp-admin dashboard to redirect visitors…
Password Attacks 101
Cesar Anjos According to the 2020 Data Breaches report by Verizon, 25% of all breaches involved the use of stolen credentials. And for small businesses, that number…
What is File Integrity Monitoring (FIM)?
What is file integrity monitoring? File Integrity Monitoring (FIM) is a security measure that checks and compares files against a known baseline to detect any…
WPScan Intro: How to Scan for WordPress Vulnerabilities
Alycia Mitchell In this post, we look at how to use WPScan. The tool provides you a better understanding of your WordPress website and its vulnerabilities. Be…
WPScan Intro: How to Install the WordPress Vulnerability Scanner
What does your WordPress site look like to hackers? Would it be tough to crack? Or does it have unlocked doors and unlatched windows just waiting for someone…
WordPress Continues to Fall Victim to Carding Attacks
Unsurprisingly, as WordPress continues to increase in popularity as an e-commerce platform, attackers continue to attempt to steal credit card information from unsuspecting clients. Currently, the WordPress plugin WooCommerce accounts for roughly a quarter of all…
How to Know If You’re Being DDoSed
Stephen Johnston Nowadays, the term DDoS raises the heart rate of most webmasters. Though many don’t know exactly what a DDoS attack is, they might be familiar…
The Importance of Website Backups
Juliana Lewis Today is World Backup Day. This date was created to remind people of the importance of having backups set up for everything that matters. I am pretty sure your website falls into…
How Do Websites Get Hacked?
Mike Martens As much as the web has grown, surprisingly not a lot has changed in how websites get hacked. The most important thing you can do…
Trojan Spyware and BEC Attacks
Luke Leal When it comes to an organization’s security, business email compromise (BEC) attacks are a big problem. One primary reason impacts are so significant is that…