Critical Vulnerability Discovered in WooCommerce Payments
Ben Martin On March 22nd, 2023 a critical vulnerability was discovered within the WooCommerce Payments plugin – an extremely popular eCommerce payment plugin for WordPress with over…
Browsing Category
WordPress Security
646 posts
WooCommerce Credit Card Skimmer Reveals Tampered Plugin
Disclaimer: The malware infection described in this article does not affect the software plugin as a whole and does not indicate any vulnerabilities or security…
How to Find & Fix the WordPress Pharma Hack
Rianna MacLeod Finding bogus content and unexpected links for prescription drugs on your WordPress website can be a frustrating experience. But don’t blame your site: it just…
Magbo Spam Injection Encoded with hex2bin
We recently had a new client come to us with a rather peculiar issue on their WordPress website: They were receiving unwanted popup advertisements but…
WordPress Vulnerability & Patch Roundup February 2023
Cesar Anjos Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…
Attackers Abuse Cron Jobs to Reinfect Websites
Malicious cron jobs are nothing new; we’ve seen attackers use them quite frequently to reinfect websites. However, in recent months we’ve noticed a distinctive new…
The Dangers of Installing Nulled WordPress Themes & Plugins
Nathan Chaddock Nulled WordPress themes and plugins are a controversial topic for many in the web development world — and arguably one of the bigger threats to…
Konami Code Backdoor Concealed in Image
Attackers are always looking for new ways to conceal their malware and evade detection, whether it’s through new forms of obfuscation, concatenation, or — in…
WordPress Vulnerability & Patch Roundup January 2023
Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…
How to Fix the “Deceptive Site Ahead” Warning
Did you just try to access your site and encounter a Deceptive Site Ahead warning? This error message occurs when the browser believes your website…
Massive Campaign Uses Hacked WordPress Sites as Platform for Black Hat Ad Network
Denis Sinegubko Every so often attackers register a new domain to host their malware. In many cases, these new domains are associated with specific malware campaigns, often…