Updates on WordPress security, Wordfence and what we're cooking in the lab today.

Author Archive: Kathy Zant

Wordfence Blog

Episode 78: Targeted Phishing Bypassing Security Checks and a new DDoS Record

This entry was posted in Podcasts on June 22, 2020 by Kathy Zant   0 Replies

This week, we look at some targeted phishing attacks that are bypassing Microsoft Outlook’s protective filters, and phishing campaigns using calendar invitations to target unsuspecting recipients. We also look at some successful bitcoin scams and a new record for a massive DDoS attack that targeted an AWS customer. Drupal pushes out some security fixes, and …
Read More

Defiant Participating in Privacy Shield Framework

This entry was posted in Wordfence on June 22, 2020 by Kathy Zant   0 Replies

Defiant, dba Wordfence, is now listed on the Privacy Shield certification list participating in both the EU-U.S. and Swiss-U.S. Privacy Shield frameworks. The purpose of these frameworks is to allow for the lawful transfer of personal data from the European Union and Switzerland to the United States. Two years ago when the General Data Protection …
Read More

Episode 77: WordPress 5.4.2 Released, Fake Ransomware Bitcoin Scams

This entry was posted in Podcasts on June 12, 2020 by Kathy Zant   0 Replies

This week, we look at the WP 5.4.2 release and a ransomware bitcoin scam targeting site owners with a “You’ve Been Hacked” email. We also look at an FBI warning about online banking app malware, the Verizon data breach report and what is says about WordPress, and how some white hat hackers are becoming millionaires …
Read More

Episode 76: Ongoing Attacks on WP Growing in Volume Plus Numerous Plugin Vulnerabilities

This entry was posted in Podcasts on May 16, 2020 by Kathy Zant   0 Replies

On this week’s Think Like a Hacker podcast, we cover an active attack campaign targeting WordPress sites and numerous plugin vulnerabilities. This active attack campaign has been ongoing and has outpaced all other attacks on WordPress vulnerabilities. Our threat intelligence team has been tracking this attacker for months now, and we’re seeing these attacks intensifying. …
Read More

Episode 75: The WordPress 5.4.1 Security Release & More Plugin Vulnerabilities

This entry was posted in Podcasts on May 02, 2020 by Kathy Zant   0 Replies

The Wordfence Threat Intelligence team unpacked the security updates in WordPress 5.4.1, and they published quite a few blog posts about vulnerabilities in popular plugins like Ninja Forms, LearnPress, and the Real-Time Find and Replace plugin. These plugin vulnerabilities affected over one million WordPress sites. As a few of these were Cross Site Request Forgery …
Read More

Episode 74: Staying Safe When Hackers Use Sophisticated Attacks

This entry was posted in Podcasts on April 24, 2020 by Kathy Zant   0 Replies

Stories this week about targeted attacks using 0days in iPhone and iPad devices and a sophisticated phone scam targeting a security professional that ended with a $9,800 wire transfer underscore what we all know: malicious attacks are becoming increasingly sophisticated. We give you some ideas how to stay safe. We also cover a recent plugin …
Read More

Wordfence Helping Our Friends in Australia Fight Bush Fires

This entry was posted in Wordfence on April 20, 2020 by Kathy Zant   0 Replies

Last fall as wildfires ravaged much of Australia, we were deeply affected by the stories of destruction coming out of numerous communities. As a global company with customers and friends in the region affected by these events, we looked for opportunities to help, much like we did with the WordCamp Asia Cancellation Fee Assistance program. …
Read More

Episode 73: Security News and Success through Processes with Adam Silver

This entry was posted in Podcasts on April 18, 2020 by Kathy Zant   0 Replies

The FTC is reporting numerous scams targeting fears and uncertainty, with over $12 million lost to Coronavirus-related scams. We also cover BBB warnings against oversharing on social media, over 500,000 Zoom credentials found on the dark web, Google’s removal of malicious Chrome extensions, as well as recent plugin and theme vulnerabilities. We also chatted with …
Read More

Episode 72: WordPress 5.4 Released, Zoom Conferencing Safety & Security

This entry was posted in Podcasts on April 06, 2020 by Kathy Zant   2 Replies

This week, we look at the WordPress 5.4 release which includes turning distraction free editing on by default. We also look at new plugin vulnerabilities discovered by the Wordfence Threat Intelligence team, including those found in Rank Math and a Contact From 7 helper plugin. We review the new features recently added to Fast or …
Read More

Safety and Security While Video Conferencing with Zoom

This entry was posted in General Security on April 02, 2020 by Kathy Zant   26 Replies

With much of the world shifting to working from home due to public health concerns with COVID-19, video conferencing is booming. Businesses, and even schools, are turning to platforms such as Zoom, Microsoft Teams, Google hangouts and other technologies to stay connected. Zoom has come under fire in recent days due to security issues with …
Read More

Follow Us


Protect your websites with the #1 WordPress Security Plugin

Get Premium
Over 150 million downloads

Wordfence Newsletter

Get WordPress Security Alerts and Product Updates