security

security

4 Effective Ways Of Reducing The Vulnerability Of Your WordPress Site

by
4 Effective Ways Of Reducing The Vulnerability Of Your WordPress Site

July’s news that thousands of websites were put at risk following a vulnerability in an essential WordPress plugin has left many users worried about their site security. The vulnerability was discovered by staff at Wordfence, and enabled hackers to upload files to targeted sites. No matter what your site’s purpose is, knowing how you can ensure the security of your WordPress site is essential. Here are four key areas to pay attention to in order to ensure the safety of your site. Install a WordPress Security Plugin Cybercrime often occurs because a hacker is able to exploit a vulnerability that could have been prevented, allowing … Read more…

Security Update: What You Need to Know

by
Security update: what you need to know

FooGallery and FooBox have both been updated to address a potential security risk. Freemius recently notified us, as one of their customers, of a potential SDK security vulnerability. They went to work on the issue immediately and asked developers to do the same. The issue was quickly resolved on their side and ours, and our latest update will ensure that your site won’t be at risk. We must commend Vova and the Freemius team as to how they handled the situation and quickly got to the bottom of this. We are not releasing any more detailed information about this vulnerability … Read more…

Beware : Your Site Is Part of a WordPress Pingback DDoS Botnet

by
WordPress Pinback DDoS Prevention Plugin

18 Mar 2014 Update : the plugin has been accepted and is now available on the WordPress.org plugin repo! Recently, Sucuri posted about 160,000 WordPress sites being used in a DDoS attack. This got me worried about my personal blog, as someone had emailed me last year, claiming that my blog was being used in a DDoS attack. I immediately figured the email was spam and thought “There is no way my site can be so badly compromised!” and I deleted the mail. The truth was, my personal blog was used in a WordPress Pingback DDoS attack against some poor … Read more…