WordPress Vulnerability & Patch Roundup December 2022

By Rodrigo Escobar / December 28, 2022

Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes of website compromises. To help educate website owners on emerging threats to their environments, we’ve compiled a list of important security updates and vulnerability patches for the WordPress ecosystem this […]

Read More

PSA: YITH WooCommerce Gift Cards Premium Plugin Exploited in the Wild

By Ram Gall / December 22, 2022

The Wordfence Threat Intelligence team has been tracking exploits targeting a Critical Severity Arbitrary File Upload vulnerability in YITH WooCommerce Gift Cards Premium, a plugin with over 50,000 installations according to the vendor. The vulnerability, reported by security researcher Dave Jong and publicly disclosed on November 22, 2022, impacts plugin versions up to and including […]

Read More

WP-CLI: How to Backup WordPress

By Rianna MacLeod / December 22, 2022

Regular website backups are the foundation of a solid website security plan. In the event of data loss or malware infection, restoring a WordPress backup helps you quickly and easily recover your environment and revert it back to its last known good configuration. But what if I told you that there’s a simple and reliable […]

Read More

Exploiting WordPress Plugin Vulnerabilities to Steal AWS Metadata

By Topher Tebow / December 21, 2022

In an ideal world, vulnerabilities would not exist. A request would be sent to a server, properly validated, and only the intended information would be provided by the server. Of course, this is not a perfect world, and vulnerabilities can be introduced unintentionally, or even found due to previously unknown weaknesses within the programming language. […]

Read More

How Much is Your Hacked Site Worth?

By Ram Gall / December 20, 2022

The Wordfence Threat Intelligence team has recently concluded an investigation of online marketplaces, colloquially known as “shops” by threat actors, selling access to compromised services. While contemporary threat actors primarily coordinate and conduct business through Telegram channels, compromised services and accounts are effectively a commodity, and access to them has become fundamental to the operation […]

Read More

Fake jQuery Domain Redirects Site Visitors to Scam Pages

By Kayleigh Martin / December 20, 2022

A recent infection has been making its rounds across vulnerable WordPress sites, detected on over 160 websites so far at the time of writing. The infection is injected at the top of legitimate JavaScript files and executes a script from the following malicious domain: https://jquery0[.]com/JkrJYcvQ At first glance, this domain appears to be legitimate. However, […]

Read More

Backdoor Targets FreePBX Asterisk Management Portal 

By Krasimir Konov / December 15, 2022

Written in PHP and JavaScript, FreePBX is a web-based open-source GUI that manages Asterisk, a voice over IP and telephony server. This open-source software allows users to build customer phone systems. During a recent investigation, I came across a simple piece of malware targeting FreePBX’s Asterisk Management portal which allowed attackers to arbitrarily add and […]

Read More

Wordfence Launches Free Vulnerability Database For Commercial Use – And Launches Security Portal

By Chloe Chamberland / December 14, 2022

Today we are incredibly excited to announce that Wordfence is launching an entirely free vulnerability database API and web interface, available for commercial use by hosting companies, security organizations, threat analysts, security researchers, and the WordPress user community. This is part of a larger project known as Wordfence Intelligence Community Edition, which we are launching […]

Read More

5 WooCommerce SEO Plugins to Boost Your Traffic

By Shreya / December 14, 2022

Search engines have evolved to change the way we shop. Search engine results now showcase products so customers can choose from different platforms in one place. How can you showcase your products too? How can you use SEO to grow the traffic to your shop? WooCommerce SEO plugins are the way to go. This article […]

Read More

About Us

I believe that everyone should have a mechanic that they can trust and after spending several years helping out various customers for large companies I've seen my fair share of issues.

Honesty, Integrity, and Compassion are what we share with everyone that we work with. Stop scouring the internet for help and see how we can help you today.

Our Services

Website Migrations

Plugin & Theme Updates

IDX Broker Customizations

Facebook Chatbots

DNS & Email Integrations