WordPress Websites Used to Distribute ClearFake Trojan Malware
Ben Martin Unfortunately, scams are all over the place, and anybody who has surfed the web should know this. We’ve all gotten phishing emails, or redirected to…
Browsing Category
WordPress Security
646 posts
The Security Risks of Using Nulled WordPress Plugins
Kyle Knight The prospect of obtaining premium features without spending a dime is tempting. Nulled WordPress plugins and themes, often being advertised as the no cost versions…
WordPress Vulnerability & Patch Roundup July 2024
Sucuri Malware Research Team Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…
Mastering WordPress File Permissions: A Guide for All Levels
Rianna MacLeod File permissions might seem like a small part of managing a WordPress site, but they play a key role in your website’s security and functionality.…
How to Set Cache Control Headers
When it comes to your website performance, every millisecond counts. Whether you’re managing a personal blog or a large-scale e-commerce site, the speed at which…
New Variation of WordFence Evasion Malware
We recently came across an infected WordPress environment which contained a new variation of WordFence evasion malware using some sneaky tactics to conceal itself from…
WordPress User Enumeration: Risks & Mitigation Steps
User enumeration is a technique used by attackers to discover valid usernames associated with a CMS or website. By exploiting certain features, bad actors can…
WordPress Vulnerability & Patch Roundup June 2024
Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…
Cross-Origin Resource Sharing (CORS)
Thanks to the rapid growth of JavaScript frameworks like Angular, React, and Vue, Cross-Origin Resource Sharing (CORS) has become a popular word in the developer’s…
Hundreds of Websites Targeted by Fake Google Chrome Update Pop-Ups
Puja Srivastava Fake Browser Update campaigns are known for their deceptive tactics used by hackers to trick users into downloading malicious software. These campaigns typically involve injecting…
WordPress Vulnerability & Patch Roundup May 2024
Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…