During a recent investigation, our team found malicious code that reveals how attackers are performing reconnaissance to identify if sites are actively using WooCommerce in a compromised hosting environment. These[…]
Between May 29 and May 31, 2020, the Wordfence Firewall blocked over 130 million attacks intended to harvest database credentials from 1.3 million sites by downloading their configuration files. The[…]
On May 6, our Threat Intelligence team was alerted to a zero-day vulnerability present in Elementor Pro, a WordPress plugin installed on approximately 1 million sites. That vulnerability was being[…]
In late April Wordfence discovered a critical vulnerability in Google’s Site Kit plugin for WordPress that would make it possible for any user on the site to gain full access[…]
Monitor all the user activity on your website and secure your website from any sort of suspicious attack with the help of WP Security Audit Log.
WPScan is a WordPress black box security scanner that can identify security issues within a WordPress website. Find out how easy it is to get started.
Wordfence and Sucuri are two of the best and most popular WordPress security plugins on the market.They are both highly recommended and incredibly helpful in keeping your WordPress site secure.[…]
Learn how to password protect WordPress using four different methods. Password protect your entire site, posts, categories, or parts of posts.
Over the past few weeks, our Threat Intelligence team has been tracking an active attack campaign targeting a selection of new and old WordPress plugin vulnerabilities. These attacks seek to[…]
This article explains in detail how you can prevent WordPress hack attacks from happening. It explains it all in an easy to follow way. Read on to learn…
The WordPress Security Team is exploring different approaches to backporting security fixes to older versions of the software. The effort that goes into supporting versions back to 3.7 (the release…
The WordPress plugin WP Statistics, which has an active installation base of 500k users, has an unauthenticated stored XSS vulnerability on versions prior to 12.6.7.This vulnerability can only be exploited[…]
SEO by RankMath released security updates to patch two vulnerabilities and improve security.
Description: Authenticated Remote Code Execution Affected Plugin: Ad Inserter Affected Versions: <= 2.4.21 CVSS Score: 9.9 (Critical) CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H On Friday, July 12th, our Threat Intelligence team discovered a[…]
Enter your account data and we will send you a link to reset your password.
To use social login you have to agree with the storage and handling of your data by this website. %privacy_policy%
AcceptHere you'll find all collections you've created before.
