WordPress shield


26 Jul: Expired Domain Hijacked WP Plugin Users

Malicious redirects are very common in compromised websites. Attackers DO TAKE ADVANTAGE of the site resources to promote spam, distribute other malware, backdoors, and perform all kinds of malicious activities. Sucuri, during an Incident Response investigation, found that malicious redirects were coming from a JavaScript loading via the website enmask.com,...


17 Jul: Is WordPress Secure?

With so many bad news of vulnerabilities and hackers attempting to compromise WordPress sites regularly, you start wondering if WordPress is really secure at all. You can stop wondering because WordPress is secure! The popularity numbers create this negative effect. Today, WordPress powers 27% of all sites on the web...

WPSetup Attack

12 Jul: WPSetup Attack

A new kind of attack targets fresh WordPress installations. Attack starts with a scan after the "/wp-admin/setup-config.php" URL. This is the setup URL for any freshly installed WordPress. If the attackers find that URL and it contains a setup page, it indicates that someone has recently installed WordPress on the...