Category Archives WordPress Security

6 Top Information Security Risks to Know About as You Prepare for 2019

An ever-growing range of information security threats exist that can lead to a range of devastating consequences for organizations, such as: compliance issues associated with the loss of sensitive data. severely damaged reputations as a result of information loss or theft. high costs—the average data breach costs $3.86 million according to an IBM-backed 2018 study conducted by the Ponemon Institute.…

AMP plugin in wordpress hacked

WordPress AMP Plugin Exploited This article will discuss the Code Injection Vulnerability in older versions  (Version 0.9.97.20 and Below) of the WordPress AMP Plugin. We describe what are AMPs and how the WordPress AMP plugin contains an exploitable vulnerability. Accelerated Mobile Pages (AMPs) - A Brief Introduction AMPs are a project website technology of Google which originally aimed to increase dramatically the…

WordPress is a democratic revolution when it comes to creating and hosting content. This has led to a massive upsurge in its popularity. According to the official WordPress website, it powers around 32% of internet sites. However, at times various WP sites are compromised due to attacks like the wp-config.php hack. Nevertheless, the popularity of WordPress is because of it's…

WordPress backdoor hack featured image

What is WordPress Backdoor? Thousands of WordPress sites are infected every year and the number is increasing. These hacked websites are then used to spread fraud and spam. Often the owners and developers may be unaware about the infection. The infection may be persistent or not. Thus, a WordPress backdoor helps to maintain that persistence. A Wordpress backdoor is the…

What is the WordPress Redirect Hack? Is your website redirecting users to unknown and unsecured sites? If yes, then your website might be hacked. Such WordPress hacked redirect attacks are very common where the malware redirects the visitors of a particular website to another spammy website. Recently we noticed that wp-admin is getting redirected to [getmyfreetraffic.com] [play6464.sundaylife13.agency] [hellofromhony.org/] [searchnotifyfriends.info] [play6464.sundaylife13.agency] and other…

Thanksgiving is coming (1)

BlackFriday sales have been a huge hit online. There has been a 21.6% year on year growth in buying during blackfriday with sales estimated to be worth $3.34 billion! With the buying going online, there has been an increase in hacks also. Hackers target your website or app with the sole motive of compromising your customers for financial gains. What's…

How to clean & fix WordPress eval (base64_decode) hack

Among the major CMSs used extensively by businesses worldwide, WordPress is notorious for being the most targeted by hackers, who constantly search for ways to circumvent security patches and precautions taken by users. A majority of websites run on Wordpress, rendering it an excellent hackable target for malpractices and data theft. One such hack witnessed by Wordpress users lately is…

How to remove the Backdoor: PHP/apiword malware from your WordPress website

Lately, Wordpress witnessed a perilous situation when it discovered a malicious code added to the top of the functions.php file, exploiting which the malware creator can unleash pretty much any damage he'd like. The injected code comes from the apiword malware which not only creates modifications in post.php and functions.php, but also creates a file containing a backdoor: /wp-includes/class.wp.php The presence of the functions.php file is…

Close