WP-CLI: How to Connect to WordPress via SSH

By Rianna MacLeod / April 25, 2023

The WordPress admin dashboard, though intuitive and feature-rich, can be time-consuming to explore. If you’re looking for a more direct approach to website management, consider giving the WordPress Command Line Interface (WP-CLI) a try! WP-CLI is an efficient and powerful way to manage your WordPress installation, allowing you to update your core files and plugins, […]

Read More

Multiple Vulnerabilities Patched in Shield Security

By Ram Gall / April 25, 2023

On March 20, 2023, the Wordfence Threat Intelligence team began the responsible disclosure process for two vulnerabilities in Shield Security, a security plugin with over 50,000 installations. One of these vulnerabilities allowed unauthenticated attackers to inject malicious JavaScript into an administrator dashboard in some configurations, while another allowed authenticated attackers to spoof log entries into […]

Read More

How to Prevent SSH Brute Force Login Attacks

By Rianna MacLeod / April 20, 2023

What is an SSH brute force attack? An SSH brute force attack is a common form of attack that targets remote services, particularly unix-based servers running SSH services for secure remote connections. These attacks often involve automated tools and bots to continuously attempt common password and username combinations until they successfully gain access to a […]

Read More

Wordfence Intelligence Weekly WordPress Vulnerability Report (Apr 10, 2023 to Apr 16, 2023)

By Chloe Chamberland / April 20, 2023

Last week, there were 69 vulnerabilities disclosed in 60 WordPress plugins and 4 WordPress themes that have been added to the Wordfence Intelligence Vulnerability Database, and there were 32 Vulnerability Researchers that contributed to WordPress Security last week. Review those vulnerabilities in this report now to ensure your site is not affected. Our mission with […]

Read More

How To Fix Chinese Search Results Spam

By Editorial Team / April 20, 2023

Are you noticing some strange symptoms on your website? A sudden drop in search engine rankings? A decrease in website traffic? Are you seeing random Chinese characters, unrelated to your website’s content? There might also be unfamiliar files or directories on your server that look suspicious or malicious.  If any of that is true, we’ve […]

Read More

Massive Abuse of an Abandoned Eval PHP WordPress Plugin

By Ben Martin / April 19, 2023

Attackers are always finding new and creative ways to compromise websites and maintain their foothold in environments. This is frequently done via the use of backdoors: PHP scripts designed to allow attackers access and control even after you’ve changed your passwords and thought that the worst was over. Since external scans are unable to see […]

Read More

Blubrry Addresses Authenticated Stored XSS Vulnerability in PowerPress WordPress Plugin

By Alex Thomas / April 19, 2023

On April 5, 2023, our Wordfence Threat Intelligence team identified and began the responsible disclosure process for a stored Cross-Site Scripting (XSS) vulnerability in Blubrry’s PowerPress plugin, which is actively installed on more than 50,000 WordPress websites. The vulnerability enables threat actors with contributor-level permissions or higher to inject malicious web scripts into pages using […]

Read More

Hiding in Plain Sight: Cross-Site Scripting Vulnerabilities Patched in Weaver Products

By Ram Gall / April 18, 2023

On March 14, 2023, the Wordfence Threat Intelligence team initiated the responsible disclosure process for 2 nearly identical Cross-Site Scripting vulnerabilities in the Weaver Xtreme theme and the Weaver Show Posts plugin, which each have over 10,000 installations. The plugin developer responded the same day and we provided full disclosure. Wordfence Premium, Care, and Response […]

Read More

Post Action Report: Bad Firewall Rule Released to WPEngine Customers Wednesday

By Mark Maunder / April 14, 2023

On Wednesday afternoon a small percentage of WPEngine websites using a paid version of Wordfence experienced a 500 Internal Server Error or white screen on their sites due to an erroneous firewall rule that we released. If you have experienced this issue, please check your email which contains instructions to fix the issue. You can […]

Read More

About Us

I believe that everyone should have a mechanic that they can trust and after spending several years helping out various customers for large companies I've seen my fair share of issues.

Honesty, Integrity, and Compassion are what we share with everyone that we work with. Stop scouring the internet for help and see how we can help you today.

Our Services

Website Migrations

Plugin & Theme Updates

IDX Broker Customizations

Facebook Chatbots

DNS & Email Integrations