Clik here to view.
WordPress 4.3 “Billie” Named After Jazz Singer Billie Holiday Is Available...
After four months of development led by Konstantin Obenland, WordPress 4.3 “Billie” named after jazz singer Billie Holiday, is available for download. This release features menus in the customizer,...
View ArticleClik here to view.
WPML Emails Passwords to Affected Customers in Plaintext
photo credit: thegloaming – ccCustomers who purchased WPML, a multilingual plugin for WordPress, are receiving a suspicious email that looks similar to a phishing attempt. Matt Radford, a customer of...
View ArticleWPML Confirms It Did Not Have a Security Breach
When WPML emailed new passwords to customers in plaintext, some customers thought it was due to a security breach. Amit Kvint, compatibility team leader for WPML, confirmed the emails are not a result...
View ArticleCloudflare Memory Leak Exposes Private Data
Cloudflare, a content distribution network used by many popular sites, published detailed information about a security vulnerability that leaked user information, some of which was private, including...
View ArticleDisqus Data Breach Affects 17.5 Million Accounts
Disqus, a comment management and hosting service, has announced it suffered a data breach that affects 17.5 million users. A snapshot of its database from 2012 with information dating back to 2007...
View ArticleClik here to view.
WordPress 5.7 Lets Administrators Send Password Reset Links
It’s that time in the release cycle when all the dev notes are rolling out ahead of the next major update. These notes include technical summaries of all the goodies coming in the next release. If you...
View ArticleUpdate On My Use Of Limit Login Attempts
Alex who also goes by Viper007Bond has recently installed Limit Login Attempts on his personal blog because someone is trying to brute force their way into his site. I’ve mentioned this plugin before...
View ArticleA Closer Look At Brute Force Attacks Against WP Sites
Perhaps one of the easiest attacks to perform on a WordPress based website is a brute force attack. Sucuri took the time to create a few different honeypots and monitored WP-Login.php to track the...
View ArticleClik here to view.
New Company Releases Evil WordPress Plugin
Earlier today on Twitter, WordPress community member Travis Ballard @Ansimation published a link to a plugin that will have people thinking twice before they sign up to a WordPress based website....
View ArticleClik here to view.
BruteProtect – Protecting Against Brute Force Attacks
I recently received a hat tip from a happy user of the BruteProtect plugin and decided to give it a try myself. The only configuration that is necessary for BruteProtect is to apply a free API key to...
View ArticleClik here to view.
Changing The WordPress Admin Username During Installation
One of the security tips you’ll come across often is immediately deleting the admin user after installation and creating a new user, then assigning that user the administrator role. This is something I...
View ArticleClik here to view.
Why Showing The WordPress Username Is Not A Security Risk
When we talk about the basics of WordPress security, we always tell you to use a very strong password. The recently added password strength meter helps to facilitate the process. But what about...
View Article