News
Massive Campaign Uses Hacked WordPress Sites as Platform for Black Hat Ad Network
Every so often attackers register a new domain to host their malware. In many cases, these new domains are associated with specific malware campaigns, often related to redirecting legitimate website traffic to third party sites of their choosing — including tech support scams, adult dating, phishing, or drive-by-downloads. Since late December, our team has been […]
Read More
The Wordfence 2022 State of WordPress Security Report
Today, the Wordfence Threat Intelligence team is releasing our 2022 State of WordPress Security Report as a free White Paper. In our report, we look at changes in the threat landscape, analyze impactful trends, and provide recommendations based on our findings. While most of our recommendations remain consistent with prior years, there were some surprising […]
Read More
PSA: Your Site Isn’t Hacked By This Bitcoin Scam, Keep the Money
On January 19th, 2023, a member of the Wordfence Threat Intelligence team received an email from their personal blog, claiming the site had been hacked, and we received two reports from Wordfence users who received the same message. The email claimed that the site had been hacked due to a vulnerability on the site. The […]
Read More
Vulnerable WordPress Sites Compromised with Different Database Infections
Vulnerabilities within WordPress can lead to compromise, and oftentimes known vulnerabilities are utilized to infect WordPress sites with more than one infection. It is common for out of date websites to be attacked by multiple threat actors or targeted by the same attacker using multiple different channels. We recently came across a database injection that […]
Read More
Is WordPress Secure?
According to W3Techs, 43.2% of all websites on the internet use WordPress. And of all websites that use a CMS (Content Management System) more than half (64%) leverage WordPress to power their blog or website. Unfortunately, since WordPress has such a large market share it has also become a prime target for attackers. You might […]
Read More
An Introduction to WordPress Plugins
The default WordPress site is basic. It’s a blank canvas for you to jazz up and make your own. Maybe this means turning your site into an ecommerce store or using a pre-designed template for your blog page. You could even start selling courses on your WordPress site. But, how do you do all of […]
Read More
9 Essential Plugins For Every WordPress Site
Plugins open up a world of possibilities for a WordPress site. You can design something completely new, change your site into an e-commerce store, or even create a portfolio for your art. The sky’s the limit. You can use it to enable new features, optimize content, use lovely designs, and so much more. The world […]
Read More
How to fix the “the uploaded file exceeds the upload_max_filesize directive in php ini” error
It can be very frustrating to run into any error on your WordPress site. But the “the uploaded file exceeds the upload_max_filesize directive in php ini” error can be hard to work around if you don’t know how. This message comes up whenever you’re uploading large files. Things like images, videos, themes, plugins, and other […]
Read More
How to Fix “There Has Been a Critical Error on Your Website” in WordPress
Critical errors on any system can be extremely frustrating. But if you’ve recently encountered the “There has been a critical error on your website” message on your WordPress site, don’t fret! In many cases, critical errors are the result of conflicts in plugins, theme files, or PHP related issues. This is one of the most […]
Read More