Wordfence is the flagship product of Defiant Inc. Millions of WordPress site owners rely on Wordfence to protect their websites, their customer data and their investment. Install Wordfence today and lock down your WordPress site in minutes.

Defiant

Our Story

Wordfence is incorporated as Defiant, Inc., a Delaware company. We are a small team that is passionate about software engineering and delivering excellent customer service. Wordfence has been downloaded over 180 million times, and is consistently one of the top plugins for WordPress on WordPress.org. The Wordfence WordPress Security plugin protects over 4 million active WordPress websites.

Explore Defiant

Notable Research Coverage

WordPress 5.6: The Good, the Meh and the Ugly

Search Engine Journal

Roger Montti

December 10, 2020

WordPress 5.6 lands with new auto-update UI, Site Health enhancements

The Daily Swig

Adam Bannister

December 8, 2020

Millions of WordPress sites hit in wide-ranging attack

TechRadar

Barclay Ballard

November 18, 2020

Ultimate Member Plugin for WordPress Allows Site Takeover

Threatpost

Tara Seals

November 9, 2020

WordPress plugin bugs can let attackers hijack up to 100K sites

Bleeping Computer

Sergiu Gatlan

November 9, 2020

General Business Inquiries

Do you have a press inquiry or want to ask about partnerships, a feature or idea or other general business inquiries?

Let's Talk

Check Out The Latest From Our Blog

Episode 100: How to Lose 6 Figures the Easy Way

January 15, 2021

Kathy Zant

The recent SolarWinds attack was incredibly sophisticated. What happens when that level of sophistication targets a homebuyer during one of the largest transactions of their lifetime? On this episode, we tell the story of an extremely difficult-to-detect spearphishing attack that almost cost a homebuyer a significant amount. We review the warning signs seen in this …
Read More

Multiple Vulnerabilities Patched in Orbit Fox by ThemeIsle Plugin

January 12, 2021

Chloe Chamberland

On November 19, 2020, our Threat Intelligence team responsibly disclosed two vulnerabilities in Orbit Fox by ThemeIsle, a WordPress plugin used by over 400,000 sites. One of these flaws made it possible for attackers with contributor level access or above to escalate their privileges to those of an administrator and potentially take over a WordPress …
Read More

Who Attacked SolarWinds and Why WordPress Users Need to Know

December 24, 2020

Chloe Chamberland

Chloe Chamberland is a threat analyst and member of the Wordfence Threat Intelligence Team. She holds the following certifications: OSCP, OSWP, OSWE, Security+, CySA+, PenTest+, CASP+, SSCP, Associate of (ISC)2, CEH, ECSA and eWPT. Many of these are advanced certifications including OSCP and OSWE which are 24 and 48 hour exams respectively, that require hands-on …
Read More

SolarWinds and Supply Chain Attacks: Could it happen to WordPress?

December 23, 2020

Ram Gall

The SolarWinds supply chain attack is all over the news, impacting government agencies, telecommunications firms, and other large organizations. The security firm FireEye was the first victim of the attack, disclosing that they had been hacked on December 8, 2020. On December 13th the US Treasury Department announced that it had also been compromised. At …
Read More

Episode 99: SolarWinds Supply Chain Attack Affects Government and Fortune 500 Businesses

December 18, 2020

Kathy Zant

Earlier this week, we learned that SolarWinds, the largest provider of network management tools for government and enterprise organizations fell victim to a supply chain attack. This attack affected their Orion network management system. Reportedly, 18,000 enterprise and government customers installed malware that was digitally signed by a valid certificate as part of an update …
Read More

A Challenging Exploit: The Contact Form 7 File Upload Vulnerability

December 17, 2020

Ram Gall

Contact Form 7, arguably the most widely used WordPress plugin, released a security patch for an unrestricted file upload vulnerability in all versions 5.3.1 and lower. The WordPress plugin directory lists 5+ million sites using Contact Form 7, but we estimate that it has at least 10 million installations. One of the important features of …
Read More

View More Blog Posts