Update On My Use Of Limit Login Attempts
Alex who also goes by Viper007Bond has recently installed Limit Login Attempts on his personal blog because someone is trying to brute force their way into his site. I’ve mentioned this plugin before...
View ArticleA Closer Look At Brute Force Attacks Against WP Sites
Perhaps one of the easiest attacks to perform on a WordPress based website is a brute force attack. Sucuri took the time to create a few different honeypots and monitored WP-Login.php to track the...
View ArticleClik here to view.
New Company Releases Evil WordPress Plugin
Earlier today on Twitter, WordPress community member Travis Ballard @Ansimation published a link to a plugin that will have people thinking twice before they sign up to a WordPress based website....
View ArticleClik here to view.
BruteProtect – Protecting Against Brute Force Attacks
I recently received a hat tip from a happy user of the BruteProtect plugin and decided to give it a try myself. The only configuration that is necessary for BruteProtect is to apply a free API key to...
View ArticleClik here to view.
Changing The WordPress Admin Username During Installation
One of the security tips you’ll come across often is immediately deleting the admin user after installation and creating a new user, then assigning that user the administrator role. This is something I...
View ArticleClik here to view.
Why Showing The WordPress Username Is Not A Security Risk
When we talk about the basics of WordPress security, we always tell you to use a very strong password. The recently added password strength meter helps to facilitate the process. But what about...
View ArticleClik here to view.
iThemes Suffers Security Breach, Customers Urged To Reset Passwords
iThemes published details on a security breach that took place earlier today. According to the announcement, after noticing suspicious activity, they noticed a signification attack on their membership...
View ArticleClik here to view.
iThemes Confirms it Stored Customer Passwords in Clear-Text
photo credit: thegloaming – cc The CEO of iThemes, Cory Miller, published a second update concerning the security breach that occurred on Tuesday. After news of the breach, customers were left...
View ArticleClik here to view.
phpBB.com Compromised, Users Should Change Their Passwords
phpBB.com, which hosts the popular open source forum software phpBB, has been compromised. On Dec. 14th, members of the development team discovered several web servers that power the website were...
View ArticleClik here to view.
Wordfence Premium Adds the Ability to Audit User Passwords in WordPress
By utilizing the power of graphical processing units and partnering with Netriver, Wordfence can simulate a password cracking attempt using a library that contains more than 260 million passwords. The...
View ArticleClik here to view.
WordPress 4.3 “Billie” Named After Jazz Singer Billie Holiday Is Available...
After four months of development led by Konstantin Obenland, WordPress 4.3 “Billie” named after jazz singer Billie Holiday, is available for download. This release features menus in the customizer,...
View ArticleClik here to view.
WPML Emails Passwords to Affected Customers in Plaintext
photo credit: thegloaming – ccCustomers who purchased WPML, a multilingual plugin for WordPress, are receiving a suspicious email that looks similar to a phishing attempt. Matt Radford, a customer of...
View ArticleWPML Confirms It Did Not Have a Security Breach
When WPML emailed new passwords to customers in plaintext, some customers thought it was due to a security breach. Amit Kvint, compatibility team leader for WPML, confirmed the emails are not a result...
View ArticleClik here to view.
BruteProtect – Protecting Against Brute Force Attacks
I recently received a hat tip from a happy user of the BruteProtect plugin and decided to give it a try myself. The only configuration that is necessary for BruteProtect is to apply a free API key to...
View ArticleClik here to view.
Changing The WordPress Admin Username During Installation
One of the security tips you’ll come across often is immediately deleting the admin user after installation and creating a new user, then assigning that user the administrator role. This is something I...
View ArticleClik here to view.
Why Showing The WordPress Username Is Not A Security Risk
When we talk about the basics of WordPress security, we always tell you to use a very strong password. The recently added password strength meter helps to facilitate the process. But what about...
View ArticleClik here to view.
iThemes Suffers Security Breach, Customers Urged To Reset Passwords
iThemes published details on a security breach that took place earlier today. According to the announcement, after noticing suspicious activity, they noticed a signification attack on their membership...
View ArticleClik here to view.
iThemes Confirms it Stored Customer Passwords in Clear-Text
photo credit: thegloaming – cc The CEO of iThemes, Cory Miller, published a second update concerning the security breach that occurred on Tuesday. After news of the breach, customers were left...
View ArticleClik here to view.
phpBB.com Compromised, Users Should Change Their Passwords
phpBB.com, which hosts the popular open source forum software phpBB, has been compromised. On Dec. 14th, members of the development team discovered several web servers that power the website were...
View ArticleClik here to view.
Wordfence Premium Adds the Ability to Audit User Passwords in WordPress
By utilizing the power of graphical processing units and partnering with Netriver, Wordfence can simulate a password cracking attempt using a library that contains more than 260 million passwords. The...
View Article