Security – Internet, WordPress, and otherwise

WordPress activity logs for newbies

WordPress activity logs for newbies

WordPress activity logs help site administrators better manage their WordPress websites and users, and keep them secure. Activity logs are also very helpful in a post hack scenario, to identify the source of the attack. If you are new to WordPress activity logs, this...

read more
Vulnerabilities Patched in IMPress for IDX Broker

Vulnerabilities Patched in IMPress for IDX Broker

On February 28, 2020, the Wordfence Threat Intelligence team became aware of a newly patched stored Cross-Site Scripting (XSS) vulnerability in IMPress for IDX Broker, a WordPress plugin with over 10,000 installations. Although all Wordfence users, including those...

read more
Episode 71: Hackers Targeting COVID-19 Fears

Episode 71: Hackers Targeting COVID-19 Fears

With many of us under either lockdown or shelter-in-place orders due to the COVID-19/Corona virus, fear and stress are rampant. This additional stress lowers our critical thinking capabilities and increases our vulnerability. Hackers targeting these human...

read more
WordPress 5.4 RC4

WordPress 5.4 RC4

The fourth release candidate for WordPress 5.4 is live! WordPress 5.4 is currently scheduled to land on March 31 2020, and we need your help to get there—if you haven’t tried 5.4 yet, now is the time! You can test the WordPress 5.4 release candidate in...

read more
Penetration testing for WordPress websites

Penetration testing for WordPress websites

WordPress powers a lot of websites on the Internet. So it’s no surprise that seasoned attackers and “script-kiddies” like to target WordPress websites. Whether you’re a webmaster, or a security professional, when tasked with assessing the security posture of a...

read more
WordPress 5.4 RC3

WordPress 5.4 RC3

The third release candidate for WordPress 5.4 is now available! WordPress 5.4 is currently scheduled to be released on March 31 2020, and we need your help to get there—if you haven’t tried 5.4 yet, now is the time! There are two ways to test the...

read more
How to Secure a WordPress Site in 7 Simple Steps

How to Secure a WordPress Site in 7 Simple Steps

Share via: At any moment, your website might be under attack without you knowing it. Bots could be probing your pages, trying to find vulnerabilities to inject malware or gain access to user data. It's your job to secure your WordPress site so it isn't low-hanging...

read more
Vulnerability Patched in Import Export WordPress Users

Vulnerability Patched in Import Export WordPress Users

On February 26th, our Threat Intelligence team discovered a vulnerability in Import Export WordPress Users, a WordPress plugin installed on over 30,000 sites. The flaw allowed anybody with subscriber-level access or above to import new users via a CSV file, including...

read more
WordPress Vulnerability Roundup: March 2020, Part 1

WordPress Vulnerability Roundup: March 2020, Part 1

New WordPress plugin and theme vulnerabilities were disclosed during the first half of March, so we want to keep you aware. In this post, we cover recent WordPress plugin, theme and core vulnerabilities and what to do if you are running one of the vulnerable plugins...

read more

The Dangers of Unlicensed WordPress Plugins and Themes

One of the greatest things about WordPress is the open source community behind it. Thanks to the multitude of plugins and themes available, even the most basic of users can create and deploy a WordPress site with ease.Through this beautiful ecosystem that empowers...

read more
Pagely Security Updates: Feb 2020

Pagely Security Updates: Feb 2020

WordPress CoreNo notable WordPress core security releases.Plugin/Theme Vulnerabilities of NoteDuplicator PluginThe Duplicator and Duplicator-Pro plugins both contained a vulnerability that allowed attackers to make a single request to a website, and be able to...

read more
7 WordPress Security Best Practices

7 WordPress Security Best Practices

As hacks and security breaches become more of a concern for anyone running a WordPress website, it’s important to know you can drastically improve your security by using a few WordPress security best practices. If you don’t already have a WordPress security strategy...

read more

Get ALL Your SEO, WordPress & Divi News

Join Our Daily Roundup