This site uses cookies in accordance with our Privacy Policy.
Wordfence Research and News
Hacked by an 11 Year Old
The Wordfence team recently sponsored and attended WordCamp Atlanta. Instead of doing the usual boring corporate thing with our booth, we decided to host a capture the flag, or CTF contest.
Solved: Jetpack Generating Mysterious Admin Email Change Messages
We’ve received quite a few questions about this in the past 24 hours, either via forums, email or twitter.
Is WordPress Secure?
I recently got a call from a friend I haven’t seen for a while asking me if I’d like to grab a coffee.
PSA: Lessons From The Atlanta Ransomware Situation
In the past few days the City of Atlanta has been hit with a ransomware attack.
PSA: Replace Your SSL/TLS Certs by Symantec, Thawte, VeriSign, Equifax, GeoTrust and RapidSSL
This is a public service announcement and a reminder to site owners.
New Guides From Wordfence To Help Clean a Hacked Website
At Wordfence, one of our goals is to empower you as much as possible to be self-sufficient, at no additional cost.
Cryptomining Supply Chain Attack Hits Government Websites
In the past 24 hours, Security researcher Scott Helme discovered that a third party accessibility plugin called ‘Browsealoud’ had their servers compromised.
WordPress Update Breaks Future Auto-Updates. Manually Update Now!
[Update at 10:50am PST: Based on the comments we’ve received below, it sounds like this problem only affects certain sites.
Breaking: Aggressive WordPress Brute Force Attack Campaign Started Today, 3am UTC
A massive distributed brute force attack campaign targeting WordPress sites started this morning at 3am Universal Time, 7pm Pacific Time.
Wordfence Is Now Defiant
Today we are announcing that our company name is changing to Defiant Inc.
Breaking WordPress Security Research in your inbox as it happens.
