Over one million WordPress sites receive forced update to security plugin after severe vulnerability discovered

Over one million WordPress sites receive forced update to security plugin after severe vulnerability discovered

Loginizer, a popular plugin for protecting WordPress blogs from brute force attacks, has been found to contain its own severe vulnerabilities that could be exploited by hackers. The flaw, discovered by vulnerability ...
WordPress Websites Attacked via File Manager Plugin Vulnerability

WordPress Websites Attacked via File Manager Plugin Vulnerability

Websites are being hijacked by hackers exploiting plugin vulnerability Hackers password-protect compromised sites to keep out rival attackers At-risk websites advised to update WordPress File Manager plugin immediately. Hackers are exploiting a ...
1.3 Million WordPress Websites Targeted by Attackers Looking for Old Vulnerabilities

1.3 Million WordPress Websites Targeted by Attackers Looking for Old Vulnerabilities

A vast campaign targeting WordPress-based websites was identified by the Wordfence Firewall as it targeted 1.3 million pages, trying to leverage known plugins and theme vulnerabilities. WordPress is just one of the ...

Thunderbolt Flaws, WordPress Plugin Vulnerabilities, Patriot Act Vote

In episode 121 for May 18th 2020: A new Thunderbolt flaw could let hackers steal your data in under five minutes, new vulnerabilities in a popular WordPress plugin, and details on why ...

WordPress Backup and Restore Best Practices: How to Protect Your Website from Unexpected Downtime

We’ll break down some of the backup and restoration methods for your WordPress site that can help you recover from the schmucks of the digital world It’s never just a... The post ...
WordPress sites hacked through defunct Rich Reviews plugin

WordPress sites hacked through defunct Rich Reviews plugin

An estimated 16,000 websites are believed to be running a vulnerable and no-longer-maintained WordPress plugin that can be exploited to display pop-up ads and redirect visitors to webpages containing porn, scams, and–worst ...
SiteLock

SiteLock Extends Database Security Reach to MySQL

SiteLock this week extended the reach of its tool for finding and removing malware from databases to include the open source MySQL database. Previously, the SMART Database only supported websites built using ...
Security Boulevard

13 Reasons Why WordPress Hacks are Successful

In the attacker’s world, all vulnerabilities and potential exploits work toward the hacker’s advantage — not yours, not mine. This includes WordPress hacks. While living back east (over a decade ago), I ...
Protect WordPress Websites from SQL Injection

How to Protect WordPress Websites from SQL Injection

If you are one of the many who are using WordPress as a content management system (CMS) for your website, it’s important to be aware of SQL injection threats that could take ...
Security Boulevard
breach

WordPress Sites Hacked Through Vulnerable Payment Forms Plug-in

Hackers are exploiting vulnerabilities in a WordPress plug-in that was patched months ago without being publicly announced. A different vulnerability has been found in the same plug-in during a recent forensic investigation ...
Security Boulevard