News
How to Secure & Harden Your Joomla! Website in 12 Steps
At Sucuri, we’re often asked how website owners and webmasters can secure their websites. However, advice can often be too broad; different content management systems (CMS) exist in this ecosystem and each require a unique security configuration. That’s exactly why the Sucuri Firewall contains an application profiling engine that adapts to the CMS and regular […]
Read More
Wordfence 7.7.0 Is Out! Here Are The Changes
Wordfence 7.7.0 has just been released and as usual, it includes several awesome enhancements and updates for our security conscious WordPress publishers and e-commerce websites. This post goes into a little more detail on each change we’ve included. We don’t usually post additional detail like this, and we thought we’d give it a try, and […]
Read More
How To Change WordPress Login URL?
The WordPress login form is the access point to the world of WordPress. This simple form allows authorized users who successfully enter their account details to enter the WordPress admin area. By default, the WordPress login page can be accessed by appending /wp-login.php or /wp-admin/, to your main WordPress URL. www.site.com/wp-login.phpwww.site.com/wp-admin/ (Redirects to wp-login.php) The […]
Read More
WordPress Vulnerability & Patch Roundup September 2022
Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes of website compromises. To help educate website owners on emerging threats to their environments, we’ve compiled a list of important security updates and vulnerability patches for the WordPress ecosystem this […]
Read More
New Malware Variants Serve Bogus CloudFlare DDoS Captcha
When attackers shift up their campaigns, change their payload or exfiltration domains, and put some extra effort into hiding their malware it’s usually a telltale sign that they are making some money off of their exploits. One such campaign is the fake CloudFlare DDoS pages which we reported on last month. The attack is simple: […]
Read More
Cross-Site Scripting: The Real WordPress Supervillain
Vulnerabilities are a fact of life for anyone managing a website, even when using a well-established content management system like WordPress. Not all vulnerabilities are equal, with some allowing access to sensitive data that would normally be hidden from public view, while others could allow a malicious actor to take full control of an affected […]
Read More
How to edit a WooCommerce Checkout Page? (Beginner’s Guide)
Last week, I tried to buy a shirt from an online store. Picked the design, size, and color I liked, and tried to clear the cart. The checkout page was enormous and it was split over multiple pages. Every time I thought I was done with the process, I needed to fill in more information. […]
Read More
How to Fix Google Ads Disapproved Due to Malicious Software
It’s estimated that 98.5% of sites who advertise use Google Ads to generate revenue and bring in traffic. That’s a hefty number of websites who leverage the popular platform to publish and serve ads. And while most webmasters are keenly aware that a hack can significantly impact your site’s revenue and organic rankings, malicious code […]
Read More
WooCommerce and Elementor – The Beginner’s Guide
Truly customizing your WooCommerce site with just the Gutenberg editor can be difficult. There are very few fonts, a limited number of widgets, and so little room to play with. This is where Elementor comes in. Every bit of your WooCommerce site can be customized to bring your customers the best shopping experience. You already […]
Read More
