WordPress sites hacked through defunct Rich Reviews plugin

WordPress sites hacked through defunct Rich Reviews plugin

An estimated 16,000 websites are believed to be running a vulnerable and no-longer-maintained WordPress plugin that can be exploited to display pop-up ads and redirect visitors to webpages containing porn, scams, and–worst ...
SiteLock

SiteLock Extends Database Security Reach to MySQL

SiteLock this week extended the reach of its tool for finding and removing malware from databases to include the open source MySQL database. Previously, the SMART Database only supported websites built using ...
Security Boulevard

13 Reasons Why WordPress Hacks are Successful

In the attacker’s world, all vulnerabilities and potential exploits work toward the hacker’s advantage — not yours, not mine. This includes WordPress hacks. While living back east (over a decade ago), I ...
Protect WordPress Websites from SQL Injection

How to Protect WordPress Websites from SQL Injection

If you are one of the many who are using WordPress as a content management system (CMS) for your website, it’s important to be aware of SQL injection threats that could take ...
Security Boulevard
Security Mistakes Cripple Network

WordPress Sites Hacked Through Vulnerable Payment Forms Plug-in

Hackers are exploiting vulnerabilities in a WordPress plug-in that was patched months ago without being publicly announced. A different vulnerability has been found in the same plug-in during a recent forensic investigation ...
Security Boulevard
Security of the WordPress Platform

The Security of the WordPress Platform

Roughly a quarter of all websites on the internet are built on WordPress. You’d think that such popularity would ensure that the platform is flawless and secure! But did you ever wonder ...
Security Boulevard
SOC

Protect Your WordPress from Cybersecurity Threats

WordPress is among the most famous publishing platforms, running more than 24 percent of all websites globally. WordPress is open source, which means it is visible and discernible to every user—and is ...
Security Boulevard
Phishing: An Ever-Evolving Threat

New Phishing Kit Allows Bypassing Two-Factor Authentication with Ease

Attackers have a new phishing tool in their arsenal, and it’s a powerful one. A penetration tester released an open source toolkit that can be used to easily set up phishing attacks ...
Security Boulevard

How to Add HTTP Security Headers in WordPress

If you own a WordPress site, then you should be careful about your website security. To successfully run a blog, business or online store, you need to make sure your website is ...
Vulnerable to BEC Fraud

Email Spam Campaign Targets U.S. Retail, Restaurant Sectors

A cybercriminal group has launched a malware campaign via personalized spear-phishing emails against large retail, restaurant and grocery chains in the United States, as well as against other organizations from the food ...
Security Boulevard
Loading...