How to Add SSL & Move WordPress from HTTP to HTTPS
Juliana Lewis Moving a WordPress website from HTTP to HTTPS should be a priority for any webmaster. Recent statistics show that over 33% of website administrators across…
Browsing Category
WordPress Security
651 posts
Fake Browser Updates Push Ransomware and Bank Malware
Denis Sinegubko Recently we came across a malicious campaign injecting scripts that push fake browser updates onto site visitors. This is what a typical fake update request…
The Importance of Website Logs
Krasimir Konov As a security company, we deal with a lot of compromised websites. Unfortunately, in most cases, we have limited access to customer logs, which is…
Spam Injector Disguised as License Key in WordPress Website
Moe O Here at Sucuri, we clean WordPress websites every day. There are various types of common malware, but when we stumble upon a different scenario, our…
Spam Injector Disguised as a License Key
A client reported some weird spam URLs injected on their WordPress website and after an investigation, it turned out that the hacker was hiding the…
OWASP Top 10 Security Risks – Part III
Gerson Ruiz To bring awareness to what threatens the integrity of websites, we are continuing a series of posts on the OWASP top 10 security risks. The…
Using Innocent Roles to Hide Admin Users
Cesar Anjos All across the internet, we find guides and tutorials on how to keep your WordPress site secure. Most of them approach the concept of user…
Side Effects of the Site_url Hack
We\’ve been cleaning many sites infected by the so-called site_url hack–the result of the WP GDPR Compliance plugin vulnerability. The sites are broken because their…
Hackers Change WordPress Siteurl to Pastebin
Last Friday, we reported on a hack that used a vulnerability in the popular WP GDPR Compliance plugin to change WordPress siteurl settings to erealitatea[.]net.…
Erealitatea[.]net Hack Corrupts Websites with WP GDPR Compliance Plugin Vulnerability
Pedro Peixoto We have noticed a growing number of WordPress-based sites that have had their URL settings changed to hxxp://erealitatea[.]net. Further investigations show that the issue is…
New WordPress Security Email Course
Rianna MacLeod Recent statistics show that over 32% of website administrators across the web use WordPress. Unfortunately, the CMSs popularity comes at a price — attackers often…