Category Archives WordPress Security

With each passing day, cases of WordPress infection that redirects visitors to suspicious pages is getting common.  Recently, a vulnerability was discovered in tagDiv Themes and Ultimate Member Plugins. In this WordPress redirect hack visitors to your website are redirected to phishing or malicious pages. In this hack, users, when redirected, are taken to irritating pages with arbitrary URL hxxp utroro.com/xyz  or  hxxp://murieh.abc/xyz…

WordPress File & Folder Permissions - Recommended Permissions for WordPress Security When we talk about securing our WordPress account, we tend to discuss security plugins and extensions mostly which, no doubt is an important aspect of it. But, ignoring file permissions altogether can prove to be immensely dangerous for your WordPress website. To begin with, let us know what WordPress…

Crypto currency mining malware

CryptoLoot scripts found in WordPress and Drupal sites Have you heard about GitHub? Surely you have and so have the crypto miners. Crypto miners are using files from the repository of GitHub. They have been using RawGit which is a content delivery network for GitHub. They also used serverless apps to generate many crypto scripts. Such crypto mining attacks are…

Wordfence Deactivated

A WordPress security issue that is gaining a lot of attention and has surfaced recently is the Wordfence deactivated automatically issue. In this issue, the famous WordPress security plugin Wordfence is getting deactivated/deleted automatically. The users are notified via e-mail. The main reason behind this attack is you have installed Jetpack plugin and it might be the door that allowed…

fight fraudulent transactions on WordPress

No matter what kind of store you have, but to fight fraudulent transactions on WordPress is a real threat, and you need to take action to guard against them. In a study of transactions from more than 5,000 e-commerce merchants across the world last year, it was found that the fraud rate for transactions over $500 was an alarming 11.47%.…

51 Must-Do Checks on WordPress Website Maintenance One of the best Content Management Systems powering millions of websites on the internet, WordPress is an user-friendly CMS that allows you to build any kind of website you want. However, owing to its huge popularity, hackers are always on the lookout for loopholes and vulnerabilities on the WordPress website. Thus, one of…

Wordpress Spam Results Google Search

Over the past few months, a new type of seasoned malware injection has surfaced on the internet, this malware’s intentions are pretty clear. It generates Spam Search Results when someone Googles about your WordPress website. The most common attacks are Japanese SEO Spam, Wordpress Pharma attack & Spam links. This WordPress Spam malware creates junk pages on your website that get redirected…

What is WordPress wp-vcd Malware? We recently saw a new type of malware infecting WordPress websites by leveraging loopholes in outdated plugins and themes. The wp-vcd malware creates backdoors in your website by adding hidden WordPress admin users. Further, some variants of the malicious codes have been seen to modify core WordPress files and also add new files in the…

Close