Malicious redirects are very common in compromised websites. Attackers DO TAKE ADVANTAGE of the site resources to promote spam, distribute other malware, backdoors, and perform all kinds of malicious activities. Sucuri, during an Incident Response investigation, found that malicious redirects were coming from a JavaScript loading via the website enmask.com,…
WP Security
With so many bad news of vulnerabilities and hackers attempting to compromise WordPress sites regularly, you start wondering if WordPress is really secure at all. You can stop wondering because WordPress is secure! The popularity numbers create this negative effect. Today, WordPress powers 27% of all sites on the web…
A new kind of attack targets fresh WordPress installations. Attack starts with a scan after the “/wp-admin/setup-config.php” URL. This is the setup URL for any freshly installed WordPress. If the attackers find that URL and it contains a setup page, it indicates that someone has recently installed WordPress on the…
For your WordPress protection, be informed about the latest vulnerabilities in WP plugins: All-in-One WP Migration Cross-Site Scripting (XSS) reported by Twitter user @0w4ys. Immediately update to version 6.46 to fix the vulnerability. Ultimate Product Catalogue Authenticated SQL Injection reported by Twitter user @log_oscon. Immediately update to version 4.2.3 to…
WordPress security is often referred to as “reinforcement” or “hardening”. Makes sense. After all, the process is like adding reinforcements to your existing security, hardening the current capabilities. We created a few fun quizzes, to allow users to test their own WordPress Security skills. All these quizzes can be 100%…
WordPress Security is one of those topics that divide people into three separate groups: some people enjoy outsourced services, some people really enjoy saving a few bucks by doing it themselves and some business owners simply just don’t mind. Let’s see how this decision affects their business in short and…
Security: Newer browsers protect you better against viruses, scams and other threats. Outdated browsers are slow and have security holes. Speed: Every new browser generation improves speed. Even minor updates can make a considerable difference to speed factors. Technological compatibility: Modern websites are taking advantages of all the new features…
What could go wrong SECURITY wise? Security wise, this gets ugly fast and it’s painful. When your security is breached you lose immediately what you had. You lose files, data, sensitive and internal information. From the public view, your reputation gets a hit, your natural ranking is penalized, your customers…
Nothing online is 100% secure and your WordPress is no exception to this rule. Since WordPress is powering at least a quarter of all websites worldwide, the platform is naturally an irresistible target for many attacks over the years. In this post – Never let your WP become an attack…