May was a quiet month for security alerts from Sucuri. The only alert was around the wildly popular caching plugins, W3 Total Cache and WP Super Cache, which were both being targeted by some mfunc HTML comment exploits.
Security by Brad Williams [LIVEBLOG]
June 1, 2013 by Leave a Comment
A little about Brad Williams’ Security talk: Learn how to keep your WordPress-powered website secure from hackers and exploits. Brad Williams from WebDevStudios.com shows examples of hacked sites, shares tips and plugins for keeping WordPress secure, and talks about his experiences with WordPress and security. We’ll be getting started about 9am PST. UPDATED: Here are [...]
Introducing VaultPress Lite
May 8, 2013 by Leave a Comment
In an effort to appeal to more WordPress site owners, Joseph Scott — who works for Automattic, which operates VaultPress, announced today that VaultPress is now offering a “Lite” plan at a $5 per month price tag. You receive the normal benefits of daily backups, automated site restore, stats and activity logging, and 30 days [...]
WordPress Security Threats – Apr/2013
May 4, 2013 by Leave a Comment
April was a heavy month full of surprises. Two high profile caching plugins, W3 Total Cache and WP Super Cache were both exploited and require immediate updates if you have them activated. Additionally, there were widespread botnet attacks, brute-forcing password attempts and much more. Take a look below at what Sucuri wrote throughout April.
LiquidWeb Sends Customers Alert about WordPress Plugin Critical Security Vulnerability
April 26, 2013 by Leave a Comment
In a recent email from LiquidWeb, one of the largest web hosting providers on the Internet, they notified their customers about a recent security vulnerability in two popular WordPress plugins. WP Super Cache and W3 Total Cache. We have become aware of a critical security vulnerability in very commonly used plug-ins for the popular WordPress [...]
WordPress Security Threats – Mar/2013
April 1, 2013 by Leave a Comment
March’s round-up of WordPress security threats. If you have one of these plugins, make sure you’ve updated to a new version that has the vulnerability fixed, or disable the plugin immediately. If you feel you may have been hacked, use the malware and virus scanner by Sucuri. March was a light month for Sucuri, with [...]
WordPress Security with Dre Armeda [LIVEBLOG]
March 23, 2013 by 1 Comment
Next up, @Dremeda’s talk on WordPress security. Stay tuned below for live updates.
WordPress Security Threats – Feb/2013
March 6, 2013 by Leave a Comment
February’s round-up of WordPress security threats. If you have one of these plugins, make sure you’ve updated to a new version that has the vulnerability fixed, or disable the plugin immediately. If you feel you may have been hacked, use the malware and virus scanner by Sucuri. Sucuri Coverage cPanel Inc. Server Compromised WordPress Plugin: [...]
WordPress Security Threats – Jan/2013
February 7, 2013 by Leave a Comment
2012 just blew by and we’re already one month deep into 2013. January’s round-up of WordPress security threats. If you have one of these plugins, make sure you’ve updated to a new version that has the vulnerability fixed, or disable the plugin immediately. If you feel you may have been hacked, use the malware and [...]
WordPress Security Threats – Dec/2012
January 3, 2013 by 1 Comment
December’s round-up of WordPress security threats. If you have one of these plugins, make sure you’ve updated to a new version that has the vulnerability fixed, or disable the plugin immediately. If you feel you may have been hacked, use the malware and virus scanner by Sucuri. Sucuri Coverage W3 Total Cache Implementation Vulnerability Sucuri [...]
W3 Total Cache Fixes Security Hole
December 29, 2012 by Leave a Comment
Recently announced by Sucuri Security, WordPress caching plugin W3 Total Cache had a security hole. The issue is connected to the way W3TC stores the database cache (in a public accessible directory). It can be used to retrieve password hashes and other database information. Sucuri outlined a fix for the issue as an interim solution: [...]
WordPress Security Threats – Nov/2012
December 8, 2012 by Leave a Comment
November’s round-up of WordPress security threats. If you have one of these plugins, make sure you’ve updated to a new version that has the vulnerability fixed, or disable the plugin immediately. If you feel you may have been hacked, use the malware and virus scanner by Sucuri. Sucuri Coverage Website Malware – SEO Poisoning Out-of-date [...]
WordPress Security Threats – Oct/2012
November 2, 2012 by 1 Comment
October’s round-up of WordPress security threats. If you have one of these plugins, make sure you’ve updated to a new version that has the vulnerability fixed, or disable the plugin immediately. If you feel you may have been hacked, use the malware and virus scanner by Sucuri. Sucuri Coverage Is WordPress.com SPAM Campaign Due to [...]
WordPress Security Threats – Sep/2012
October 1, 2012 by Leave a Comment
September’s round-up of WordPress security threats. If you have one of these plugins, make sure you’ve updated to a new version that has the vulnerability fixed, or disable the plugin immediately. If you feel you may have been hacked, use the Sucuri free scan tool. Sucuri Coverage Sociable WordPress Plugin Security Warning WordPress 3.4.2 Released [...]
WordPress Security Threats – Aug/2012
September 2, 2012 by Leave a Comment
August’s round-up of WordPress security threats. If you have one of these plugins, make sure you’ve updated to a new version that has the vulnerability fixed, or disable the plugin immediately. If you feel you may have been hacked, use the Sucuri free scan tool.
WordPress Security Threats – Jul/2012
August 1, 2012 by Leave a Comment
July’s round-up of WordPress security threats. If you have one of these plugins, make sure you’ve updated to a new version that has the vulnerability fixed, or disable the plugin immediately. If you feel you may have been hacked, use the Sucuri free scan tool.
Has Your WordPress Blog Been Hacked?
July 11, 2012 by 4 Comments
This is a guest post by Simon Ward, founder and author of Pingable.org. You can find him on twitter @Pingable. I have been blogging with WordPress since 2007. It’s a fantastic platform with a huge variety of plugins and themes which allow for a fantastic experience for you and your readers. However, if you follow [...]
WordPress Security Threats – Jun/2012
July 8, 2012 by Leave a Comment
June’s round-up of WordPress security threats. If you have one of these plugins, make sure you’ve updated to a new version that has the vulnerability fixed, or disable the plugin immediately. If you feel you may have been hacked, use the Sucuri free scan tool. Sucuri was fairly quiet on WordPress security threats in June, [...]
WordPress Tutorial: Using SSH to Install/Upgrade
June 25, 2012 by
This tutorial will guide you step by step on how to setup your server so you can install new plugins and upgrade existing plugins using an SSH2 layer in PHP and WordPress. What is WordPress? WordPress started in 2003 with a single bit of code to enhance the typography of everyday writing and with fewer [...]
How to Stop the Hackers – WordPress Security
June 19, 2012 by Leave a Comment
Tony Perez, COO & CFO of Sucuri, posted a great tutorial and write-up about how to harden WordPress. Why bother hardening WordPress? Stop the hackers. Tony discusses how to effectively use your .htaccess file — password protection, denying a visitor by IP address, hot link protection and more. He also goes over how to securely [...]
Jonathan Dingman is a passionate blogger who loves writing about WordPress news, reporting on events, theme releases, awesome plugins, and more. He started using WordPress in 2004 and ran the first WordCamp NYC in 2008.