News
84,000 WordPress Sites Affected by Three Plugins With The Same Vulnerability
On November 5, 2021 the Wordfence Threat Intelligence team initiated the responsible disclosure process for a vulnerability we discovered in “Login/Signup Popup”, a WordPress plugin that is installed on over 20,000 sites. A few days later we discovered the same vulnerability present in two additional plugins developed by the same author: “Side Cart Woocommerce (Ajax)”, […]
Read More
10 Best Sucuri Alternatives to Protect Your Site
If you are considering investing in a security plugin, you have undoubtedly heard of Sucuri. Sucuri is a wildly popular plugin that offers a whole host of features to secure your site. And while it can be a good pick for some, security does not come in a free size. So if you are looking […]
Read More
The People Behind Us – Website Security Champions 2021
Kayleigh Martin is a tier 2 Website Security Analyst. Her daily responsibilities include investigating sites for malware, removing the malware, and advising clients on how to prevent future attacks. The most exciting part of her day is finding new malware that’s not been seen before. She finds that if she focuses on doing her job […]
Read More
Finding & Fixing Google Blocklist Warnings
When a website is added to a blocklist by blocklist authorities it can be painfully stressful for their business. SEO rankings take a dive, and loss in revenue/traffic is hit even harder if not resolved quickly. In this article we’ll be discussing what blocklists are exactly, why you should consider them when starting a website, […]
Read More
WordPress 5.8.3 Security Release
On January 6, 2022, the WordPress core team released WordPress version 5.8.3, which contains security patches for 4 high-severity vulnerabilities. These patches were backported to every version of WordPress since 3.7. WordPress has supported automatic core updates for security releases since WordPress 3.7, and the vast majority of WordPress sites will have received these patches […]
Read More
WordPress 5.8.3 Security Release
On January 6th, Automattic released an important security update for the WordPress core which addresses four separate vulnerabilities. WordPress website administrators are advised to update their websites immediately. All WordPress versions between 3.7 and 5.8 are affected by this, and the security issues include SQL injection, stored XSS and object injection, which we will review […]
Read More
How to Eliminate Render-Blocking Resources on WordPress (CSS + Javascript)
If you’re a WordPress user, I strongly recommend making website performance a priority. By delivering fast-loading pages to visitors, you will improve your search engine rankings, increase website traffic and give readers a great user experience. A key part of optimising a website is analysing web pages using performance benchmarking tools such as Google PageSpeed […]
Read More
16 WordPress Security Issues (Vulnerabilities) & Tips To Fix Them
WordPress makes it easy for anyone to have a website quickly, but there is a lot of noise online that talks about how many security issues it has. Does WordPress have security issues? Yes Are they insurmountable? NoShould it stop you from building your website with WordPress? Most certainly not A conservative estimate puts the number […]
Read More
The Ultimate WordPress Security Guide
Malware costs businesses billions of dollars every year in lost revenue, legal costs, damage to branding, and data theft. To make matters worse, hackers constantly evolve their tactics, so malware keeps changing and getting harder to spot. There are data breaches almost every day, and the scary part is how much people are losing to […]
Read More