Introduction This year a lot of plugins were launched which had a lot of innovative features like SEO optimization, a new editing interface and several newer ones which enhance the functionality of Wordpress and help us to achieve more productivity via our work on WordPress. However many of these plugins have been exploited by hackers this year for malicious purposes like…
WordPress has held the title of the biggest content management system for well over a decade. It has ushered in a new generation of websites — built by individuals who had nothing more than a raw idea in their head. One of the key features that made WordPress so popular is its unparalleled scalability. With thousands of third-party developers of…
An ever-growing range of information security threats exist that can lead to a range of devastating consequences for organizations, such as: compliance issues associated with the loss of sensitive data. severely damaged reputations as a result of information loss or theft. high costs—the average data breach costs $3.86 million according to an IBM-backed 2018 study conducted by the Ponemon Institute.…
WordPress AMP Plugin Exploited This article will discuss the Code Injection Vulnerability in older versions (Version 0.9.97.20 and Below) of the WordPress AMP Plugin. We describe what are AMPs and how the WordPress AMP plugin contains an exploitable vulnerability. Accelerated Mobile Pages (AMPs) - A Brief Introduction AMPs are a project website technology of Google which originally aimed to increase dramatically the…
WordPress GDPR Compliance Plugin Exploit The Wordpress GDPR Compliance Plugin has made it easier for users to make their websites compliant with the new General Data Protection Regulation (GDPR) laws in the EU. The older versions (1.4.2 and below) of the plugin contains some vulnerabilities due to which websites using it have been affected by the Wordpress GDPR exploit in…
WordPress is a great example of how open source software can fuel content creation. As a project of open source community, it uses MySQL for its database management. It seamlessly works in the background managing all the data. MySQL is a robust DBMS. It works great with Apache web server, PHP, and Linux operating system etc too. However, a WordPress SQL…
WordPress is a democratic revolution when it comes to creating and hosting content. This has led to a massive upsurge in its popularity. According to the official WordPress website, it powers around 32% of internet sites. However, at times various WP sites are compromised due to attacks like the wp-config.php hack. Nevertheless, the popularity of WordPress is because of it's…
What is WordPress Backdoor? Thousands of WordPress sites are infected every year and the number is increasing. These hacked websites are then used to spread fraud and spam. Often the owners and developers may be unaware about the infection. The infection may be persistent or not. Thus, a WordPress backdoor helps to maintain that persistence. A Wordpress backdoor is the…
What is the WordPress Malware Re-directions? Is your website redirecting users to unknown and unsecured sites? If yes then your website might be hacked. Such WordPress hacked redirect attacks are very common where the malware redirects visitors on a particular website to another website. Attackers achieve this by various means and sources of infection. Understanding the cause and the hack…
BlackFriday sales have been a huge hit online. There has been a 21.6% year on year growth in buying during blackfriday with sales estimated to be worth $3.34 billion! With the buying going online, there has been an increase in hacks also. Hackers target your website or app with the sole motive of compromising your customers for financial gains. What's…
