Updates on WordPress security, Wordfence and what we're cooking in the lab today.

Category Archive: Podcasts

Wordfence Blog

Podcast 117: Cyber Attack on Colonial Pipeline Affects Fuel Availability in 17 States

This entry was posted in Podcasts on May 14, 2021 by Kathy Zant   0 Replies

A ransomware attack on Colonial Pipeline affected fuel availability in 17 southeastern US states, and Bloomberg reported that Colonial Pipeline paid $5 million to DarkSide, a Russian ransomware service provider. The Biden Administration issued an executive order to increase US cybersecurity defenses. WordPress 5.7.2 was released to patch a critical object injection vulnerability in PHPMailer. …
Read More

Episode 116: Packagist Patch Shows How Supply Chain Threats Could Impact WordPress

This entry was posted in Podcasts on May 06, 2021 by Ram Gall   0 Replies

A vulnerability discovered in Packagist, which is used by Composer to manage PHP package requests, could have allowed attackers to trick Composer into downloading backdoored source code, potentially affecting all WordPress sites. Packagist reports that it’s not aware of any exploits. A SQL injection vulnerability was patched in the CleanTalk AntiSpam plugin installed on over …
Read More

Episode 115: Update Your Mac: Gatekeeper Bypass Vulnerability Exploited in the Wild

This entry was posted in Podcasts on April 30, 2021 by Ram Gall   0 Replies

Apple patches a gatekeeper bypass vulnerability that has been exploited in the wild on MacOS. Though this vulnerability requires some social engineering to exploit, it is believed to have been actively exploited since January 9, 2021. Some Digital Ocean customers were affected by a data breach exposing personally identifiable information. A WordPress trac conversation considers …
Read More

Episode 114: Trifecta of Compromises Affect Enterprise Systems

This entry was posted in Podcasts on April 23, 2021 by Kathy Zant   0 Replies

Attacks on unpatched SolarWinds systems continue. We’re now learning of a supply chain attack that started in late January 2021 affecting 29,000 customers of Codecov, as well as a zero-day under active attack affecting customers of PulseSecure VPN. Customers of these three services are well known enterprise and government organizations. In the WordPress space, there …
Read More

Episode 113: An Unprecedented FBI Operation Removes Webshells from Infected Exchange Servers

This entry was posted in Podcasts on April 16, 2021 by Ram Gall   0 Replies

An FBI initiative began remotely removing webshells from infected Microsoft Exchange servers. WordPress 5.7.1 was released with a few security patches. Over 15 Elementor add on plugins were found to have vulnerabilities similar to those found in the main Elementor plugin; these additional plugin vulnerabilities affected over 3.5 million sites with over 100 vulnerable endpoints. …
Read More

Episode 112: Wix Takes Aim at WordPress With New Ad Campaign

This entry was posted in Podcasts on April 09, 2021 by Ram Gall   0 Replies

A new Wix ad campaign targets WordPress but ends up being tone deaf in both content and strategy. New details emerge about the PHP compromise, but the full story remains unclear. Facebook user data from 2019 ends up on the dark web, and Have I Been Pwned adds a phone number check to help users …
Read More

Episode 111: PHP Git Repository Compromised

This entry was posted in Podcasts on April 02, 2021 by Kathy Zant   0 Replies

The self-hosted Git repository for PHP was compromised, with attackers adding a backdoor to a development version of PHP 8.1. The intrusion was detected by the PHP community quickly, and no production environments were affected. Ubiquiti experienced an intrusion in January that was far worse than originally reported; attackers gained access to nearly all of …
Read More

Episode 110: Active Exploitation Continues on Unpatched Thrive Themes

This entry was posted in Podcasts on March 26, 2021 by Ram Gall   2 Replies

Attackers continue to exploit recently patched vulnerabilities in Thrive Themes, though not all of them are successful. Two vulnerabilities are patched in the Facebook for WordPress plugin installed on over half a million sites. Google Chrome version 90 will use HTTPS by default, bringing significant improvements to speed and security. A ransomware insurance provider experiences …
Read More

Episode 109: This Attack Will Make You Want to Stop Using SMS 2FA

This entry was posted in Podcasts on March 19, 2021 by Kathy Zant   0 Replies

An attack shows how a SMS enablement service was used to bypass SMS 2FA for $16. We discuss the recently patched vulnerabilities in Elementor affecting over 7 million WordPress sites and how easily these cross-site scripting vulnerabilities can be exploited. We also talk about the SQL Injection vulnerabilities in Tutor LMS. The data center fire …
Read More

Episode 108: Hack Exposes 150,000 Security Cameras at Tesla, Cloudflare and Others

This entry was posted in Podcasts on March 12, 2021 by Ram Gall   0 Replies

A data breach exposes 150,000 security cameras used by organizations around the world, including Tesla and Cloudflare. State-sponsored hacking groups exploit Microsoft Exchange vulnerabilities. A fire in a French data center belonging to hosting company OVH affects millions of websites, including some prominent WordPress services like Imagify and WP Rocket. WordPress 5.7 was released this …
Read More

Follow Us


Protect your websites with the #1 WordPress Security Plugin

Get Premium
Over 150 million downloads

Wordfence Newsletter

Get WordPress Security Alerts and Product Updates