Updates on WordPress security, Wordfence and what we're cooking in the lab today.

Category Archive: Miscellaneous

WordPress 5.0: How and When to Update

This entry was posted in Miscellaneous on December 05, 2018 by Mark Maunder   44 Replies

WordPress 5.0 is being released tomorrow, December 6th. This release contains a major change to the WordPress editor. The new editor, code-named Gutenberg, is a substantial leap forward in functionality. It uses a new block-based system for editing which allows you to embed a wide range of content in your posts and pages, and gives …
Read More

Defiant’s Top 5 Spooky Security Jokes

This entry was posted in Miscellaneous on October 31, 2018 by Mikey Veenstra   0 Replies

Among a plethora of reasons to enjoy working here, we at Defiant are particularly vocal about our love for the remote office. A team spread across timezones and continents might sound like a challenge in group cohesion, but even though we’re divided geographically, we’ve forged a great culture that a breakroom ping-pong table just can’t …
Read More

Breaking Out of Shells at DerbyCon

This entry was posted in Miscellaneous on October 12, 2018 by Nate Smith   0 Replies

I downloaded my first copy of BackTrack when I was 13. I had no idea what I was doing, or how to use it, but I knew that I was hooked. I’ve been fascinated with technology since I was a kid, so the idea that I could interact with that technology in new and unexpected …
Read More

Known WordPress Threat Actor Under Investigation For Prescription-Free Online Pharmacy

This entry was posted in Miscellaneous on August 08, 2018 by Dan Moen   10 Replies

Last September we published a series of three blog posts exposing a threat actor who had purchased a number of WordPress plugins as part of an elaborate supply chain attack. This ownership enabled him to inject SEO spam into hundreds of thousands of websites, boosting search engine rankings for various illicit online businesses. In the …
Read More

Hacked by an 11 Year Old

This entry was posted in Miscellaneous on May 03, 2018 by Mark Maunder   12 Replies

The Wordfence team recently sponsored and attended WordCamp Atlanta. Instead of doing the usual boring corporate thing with our booth, we decided to host a capture the flag, or CTF contest. A CTF is essentially a hacking contest. It is a series of puzzles that the contestant needs to solve. They might include decrypting an …
Read More

Remote Working: No Bad Hair Days at Wordfence

This entry was posted in Miscellaneous, Wordfence on February 23, 2017 by Mark Maunder   6 Replies

The core team at Wordfence is now 13 full-time employees, and with contractors we are a team of 29. We are still at that really fun size where you can have a full team meeting and everyone has a chance to have their say. Every day feels like a hacker conference where everyone knows everyone …
Read More

Wide Impact: Highly Effective Gmail Phishing Technique Being Exploited

This entry was posted in General Security, Miscellaneous on January 12, 2017 by Mark Maunder   172 Replies

Update on February 24th: Chrome has resolved this issue to my satisfaction. Earlier this month they released Chrome 56.0.2924 which changes the location bar behavior. If you now view a data URL, the location bar shows a “Not Secure” message which should help users realize that they should not trust forms presented to them via a …
Read More

Election Hack Report FAQ: What You Need to Know

This entry was posted in General Security, Miscellaneous, Research, Wordfence, WordPress Security on January 02, 2017 by Mark Maunder   13 Replies

On Friday we published an analysis of the FBI and DHS Grizzly Steppe report. The report was widely seen as proof that Russian intelligence operatives hacked the US 2016 election. We showed that the PHP malware in the report is old, freely available from a Ukrainian hacker group and is an administrative tool for hackers. …
Read More

US Govt Data Shows Russia Used Outdated Ukrainian PHP Malware

This entry was posted in General Security, Miscellaneous, Research, WordPress Security on December 30, 2016 by Mark Maunder   137 Replies

Update at 1am Pacific Time, Monday morning Jan 2nd: Please note that we have published a FAQ that accompanies this report. It contains a summary of our findings and answers several other questions our readers have had. It also provides some background on our methodology. You can read it either before or after reading this report. The …
Read More

Commuting Kills

This entry was posted in Miscellaneous, Wordfence on August 12, 2015 by Mark Maunder   81 Replies

Every year we lose up to 10% of our electricity purely due to resistance during transmission. If you’ve ever wondered why a room-temperature superconductor is sought after, this is why. Thinking about superconductivity reminded me of the problem I have with companies who don’t allow telecommuting. The way I see it, remote-workers are like work-place superconductivity: …
Read More


Protect your websites with the #1 WordPress Security Plugin

Get Premium
Over 90 million downloads

Wordfence Newsletter

Get WordPress Security Alerts and Product Updates