WordPress User Enumeration: Risks & Mitigation Steps
Rianna MacLeod User enumeration is a technique used by attackers to discover valid usernames associated with a CMS or website. By exploiting certain features, bad actors can…
Browsing Tag
Passwords
65 posts
From Web3 Drainer to Distributed WordPress Brute Force Attack
Denis Sinegubko Two weeks ago we discussed a new development in website hacks: Web3 crypto wallet drainers. We’ve been closely following the most significant variant which injects…
Creating a Strong Password in 6 Easy Steps
Celise Davison Have you ever set up a new server, database, or admin account but once it came time to create a password, you struggled to come…
How to Secure the WordPress Login Page
Given that WordPress powers millions of websites worldwide, it’s no surprise that it’s a prime target for malicious activities ranging from brute force attacks and…
Password Security & Password Managers
In the spirit of National Cyber Security Awareness Month (NCSAM), let’s talk about a security basic that many people overlook: passwords. These are one of…
Optimizing WordPress: Security Beyond Default Configurations
Ben Martin Default configurations in software are not always the most secure. For example, you might buy a network-attached home security camera from your friendly neighborhood electronics…
How to Find & Clean Up the AnonymousFox Hack
Cesar Anjos The AnonymousFox hack targets insecure websites and actively exploits them to spread phishing, spam, and other malware. A major nuisance for website owners, it also…
An Overview of Basic WordPress Hardening
We have discussed in the past how out-of-the-box security configurations tend to not be very secure. This is usually true for all software and WordPress…
Password Attacks 101
According to the 2020 Data Breaches report by Verizon, 25% of all breaches involved the use of stolen credentials. And for small businesses, that number…
Phishing Campaign Targets Poste Italiane & SMS OTP Verification
Luke Leal When creating phishing lures, attackers may cite recent major regulatory changes within the context of their social engineering scheme to confuse or further entice victims…
Top 10 Hacks & Attacks from 2019
Art Martori Last year was a busy one in the world of website security. Our 2019 Threat Research Report shows that over 60% of websites we cleaned…