Tag: WordPress Security

This Week in Exploits-SiteLock

This Week in Exploits: Know Your Sites (KYS)

Many individual and small company forays on the web are through WordPress on shared hosting accounts, and it’s not uncommon for a shared hosting account to hold multiple WordPress sites as needs and business grow. Site owners maintain each and every WordPress install, managing content, configuration, users and updates. At least they should. Maintaining multiple sites in a single shared hosting account is time-consuming and, as we’ll see, risky as each site on the account is a point of access that has to be secured.

Visit wpdistrict.sitelock.com for the full story.

This Week in Exploits-SiteLock

This Week in Exploits: Increased WordPress.com Security

A recent article reported that WordPress.com is moving to enable HTTPS by default on all of its 600,000 hosted sites. This is a huge security win for WordPress.com users and the Internet at large. It sets a high security bar for other entities to strive for, and of course helps protect users and visitors from prying eyes.

If you’re a WordPress.com user, one way to take advantage of WordPress.com’s exemplary efforts is to go further and enhance the security of your WP.com site with protection services.

Visit wpdistrict.sitelock.com for the full story.

This Week in Exploits-SiteLock

This Week in Exploits: A Brief Survey of Fake WordPress Plugins

In this week’s installment of TWiE, we’ll discuss how fake plugins get on to WordPress sites, analyze a well known fake plugin to provide a sense of what they can do, look at a non-exhaustive list of fake plugins and a couple of interesting features, and discuss ways to avoid being victimized by fake plugins.

Read the full story at our WordPress microsite wpdistrict.sitelock.com.

This Week in Exploits-SiteLock

This Week in Exploits: My Hacked WordPress Site Was Fixed, Now What?

The unfortunate happens and your WordPress site is compromised. You recover from the hack through backups or SiteLock’s malware removal service, yet you still feel at unease.

The truth is, once a WordPress site recovers from a compromise, there’s a bit more to do. Learn about simple post-compromise steps that can help harden your site from future attacks.

Learn more at wpdistrict.sitelock.com.

malicious plugin

SiteLock Research Team Identifies Malicious Plugin

During a routine site cleaning, the SiteLock Research Team found suspicious code in a WordPress plugin file.

Visit our WordPress blog, the District, for full details on this malicious plugin.

Powered by WordPress & Theme by Anders Norén