Official WordPress Plugin Directory – Forcing Plugin Updates
Dre Armeda For some while we have wondered what happens when a plugin is removed from the official WordPress plugin directory for security reasons. Historically, we haven’t…
Browsing Category
WordPress Security
672 posts
Blog Comments – Analysing 100,000 Comments and Spammers
Daniel Cid “Nice blog, thanks for the info” “Awesome site. Great job” “You should take part in a contest for one of the best blogs on the…
Sucuri WordPress Security Plugin Protects Against PHP-CGI Vulnerability
Tony Perez Today we released an update on the latest PHP CGI vulnerability and provided some additional information that users can use to help protect against it.…
PHP-CGI Vulnerability Exploited in the Wild
When the PHP-CGI vulnerability was disclosed, we knew it would be just a matter of days before it started to be exploited in the wild.…
New WooThemes Vulnerability Patched – Update Framework Now!
Yesterday a vulnerability on the WooThemes Framework was disclosed by Jason Gill on githumb:gist. The vulnerability allows a visitor to see and run the output of…
Lockdown WordPress – A Security Webinar with Dre Armeda
We had the opportunity to do a webinar about WordPress security with the guys from iThemes yesterday. Here’s the video for those of you who…
Sucuri Security WordPress Plugin Free To Clients: Getting Proactive with Web Malware
We are happy to announce that our premium WordPress plugin is now for free to all our existing and new clients. The plugin is a…
Malware campaign against WordPress sites (recovery-hdd dot eu)
We have been tracking a new malware campaign that has been compromising thousands of WordPress sites over the last 3 days. They are not doing…
WordPress Security Release – Upgrade to 3.3.2 TODAY
It’s that time again, to upgrade all your WordPress installs. This morning the core team released WordPress 3.3.2 which includes security updates for three external…
GetMama – Conditional malware affecting thousands of sites
We have been tracking an interesting malware that is affecting thousands of compromised sites. We call it GetMama!! Why conditional? Because instead of just displaying…
WordPress Third Party Vulnerability – Deans FCKEditor with PWWANGS Code for WordPress(version 1.0.0)
You have heard me write in the past about understanding the true Vulnerability within WordPress. In that post I talk to the benefits of the…