PHP-CGI Vulnerability Exploited in the Wild
Daniel Cid When the PHP-CGI vulnerability was disclosed, we knew it would be just a matter of days before it started to be exploited in the wild.…
Browsing Category
WordPress Security
680 posts
New WooThemes Vulnerability Patched – Update Framework Now!
Tony Perez Yesterday a vulnerability on the WooThemes Framework was disclosed by Jason Gill on githumb:gist. The vulnerability allows a visitor to see and run the output of…
Lockdown WordPress – A Security Webinar with Dre Armeda
Dre Armeda We had the opportunity to do a webinar about WordPress security with the guys from iThemes yesterday. Here’s the video for those of you who…
Sucuri Security WordPress Plugin Free To Clients: Getting Proactive with Web Malware
We are happy to announce that our premium WordPress plugin is now for free to all our existing and new clients. The plugin is a…
Malware campaign against WordPress sites (recovery-hdd dot eu)
We have been tracking a new malware campaign that has been compromising thousands of WordPress sites over the last 3 days. They are not doing…
WordPress Security Release – Upgrade to 3.3.2 TODAY
It’s that time again, to upgrade all your WordPress installs. This morning the core team released WordPress 3.3.2 which includes security updates for three external…
GetMama – Conditional malware affecting thousands of sites
We have been tracking an interesting malware that is affecting thousands of compromised sites. We call it GetMama!! Why conditional? Because instead of just displaying…
WordPress Third Party Vulnerability – Deans FCKEditor with PWWANGS Code for WordPress(version 1.0.0)
You have heard me write in the past about understanding the true Vulnerability within WordPress. In that post I talk to the benefits of the…
WordPress – Understanding its True Vulnerability
Everyday we manage thousands of clients running a wide range of applications, built across a number of different platforms. It should be of no surprise…
Brute force attacks against WordPress sites
We talk a lot about the importance of using strong passwords, but sometimes it it hard to see how important it really is, or what…
Latest Mass Compromise of WordPress sites – More Details
We are getting lots of questions about the latest mass compromise targeting WordPress sites (redirecting to fake AV) that has affected over 30,000 domains. The…