How to Protect your Website against Cyber Attacks? When you have a brand, most of your efforts are geared at marketing and raising brand awareness and not the cyber attacks. According to the statistics and case studies, website owners often neglect their website security in favor of other things - like brand website security. While the brand website is a great…
WordPress AMP Plugin Exploited This article will discuss the Code Injection Vulnerability in older versions (Version 0.9.97.20 and Below) of the WordPress AMP Plugin. We describe what are AMPs and how the WordPress AMP plugin contains an exploitable vulnerability. Accelerated Mobile Pages (AMPs) - A Brief Introduction AMPs are a project website technology of Google which originally aimed to increase dramatically the…
WordPress GDPR Compliance Plugin Exploit The Wordpress GDPR Compliance Plugin has made it easier for users to make their websites compliant with the new General Data Protection Regulation (GDPR) laws in the EU. The older versions (1.4.2 and below) of the plugin contains some vulnerabilities due to which websites using it have been affected by the Wordpress GDPR exploit in…
Among the major CMSs used extensively by businesses worldwide, WordPress is notorious for being the most targeted by hackers, who constantly search for ways to circumvent security patches and precautions taken by users. A majority of websites run on Wordpress, rendering it an excellent hackable target for malpractices and data theft. One such hack witnessed by Wordpress users lately is…
Is your website an important marketing platform for your business? Do you like it as an elite commercial? The WordPress WooCommerce security vulnerability is a sensitive issue that is important to take into account? It is said that the majority of these systems are vulnerable to the attacks of the first apprentice hacker. Yet they can also protect themselves very well. The WooCommerce…
When we talk about securing our WordPress account, we tend to discuss security plugins and extensions mostly. Securing plugins and extensions are no doubt an important aspect of it. But, ignoring WordPress file permissions altogether can be immensely dangerous for your WordPress website. To begin with, let us know what WordPress file permissions are. WordPress file permissions are basically permissions…
A WordPress security issue that is gaining a lot of attention and has surfaced recently is the Wordfence deactivated automatically issue. In this issue, the famous WordPress security plugin Wordfence is getting deactivated/deleted automatically. The users are notified via e-mail. The main reason behind this attack is you have installed Jetpack plugin and it might be the door that allowed…
51 Must-Do Checks on WordPress Website Maintenance One of the best Content Management Systems powering millions of websites on the internet, WordPress is an user-friendly CMS that allows you to build any kind of website you want. However, owing to its huge popularity, hackers are always on the lookout for loopholes and vulnerabilities on the WordPress website. Thus, one of…
Over 700 WordPress and Joomla Websites have been infected with the ionCube malware that disguises as legitimate ionCube-encoded files. IonCube is an old and powerful PHP Encoder which is used for to encrypt and protect files with PHP encoding, encryption, obfuscation and licensing capabilities. Owing to licensing costs, ionCube isn’t generally a contender for malicious uses. However, attackers found a way to…
Are you experiencing multiple bruteforce attempts on your WordPress admin area? If yes, then it’s a high time to do something about it. In this tutorial, we exploit how your can change the URL of WordPress admin, add an additional layer of security to your login area and how to restrict WordPress admin area by IP. By protecting your admin…