Updates on CyberSecurity, WordPress and what we're cooking in the lab today.

Category Archive: WordPress Security

Ransomware Targeting WordPress – An Emerging Threat

This entry was posted in Wordfence, WordPress Security on August 15, 2017 by Mark Maunder   47 Replies

Recently, the Wordfence team has seen ransomware being used in attacks targeting WordPress. We are currently tracking a ransomware variant we are calling "EV ransomware." The following post describes what this ransomware does and how to protect yourself from being hit by this attack....read more

The July 2017 WordPress Attack Report

This entry was posted in Monthly Attack Activity Report, WordPress Security on August 10, 2017 by Dan Moen   8 Replies

This post is a continuation of the WordPress Attack Report series we've been publishing since December 2016. Reports from previous months can be found here:...read more

TrafficTrade Infection Spreading – How to Protect Yourself and Detect TrafficTrade

This entry was posted in Vulnerabilities, Wordfence, WordPress Security on August 8, 2017 by Mark Maunder   37 Replies

We have seen a significant increase in the number of websites affected by malware we refer to as 'TrafficTrade'. This malware is a piece of javascript that an attacker drops into your website content once they have compromised it. Your visitors are then redirected to websites that install malicious browser plugins or serve up spam advertising....read more

Why Choose An Endpoint Firewall Like Wordfence

This entry was posted in Wordfence, WordPress Security on August 3, 2017 by Mark Maunder   15 Replies

When choosing a firewall for your WordPress website to protect it against attacks, you have a handful of choices. Wordfence is one of the only effective "endpoint" firewalls available. The alternative is a "cloud" firewall from vendors like Sucuri (now owned by GoDaddy) and Cloudflare....read more

Hackers Find Fresh WordPress Sites Within 30 Minutes

This entry was posted in WordPress Security on July 31, 2017 by Mark Maunder   50 Replies

Last week our team attended Black Hat and DefCon in Las Vegas, two of the biggest information security conferences on earth. DefCon alone attracts approximately 20,000 information security professionals, researchers, government employees and fans. To say it is very busy is an understatement....read more

If You Use This Script, You’ve Probably Already Been Hacked

This entry was posted in WordPress Security on July 25, 2017 by Mark Maunder   48 Replies

Hacking Made Easy Several years ago, web publishing company Interconnect/IT released a handy tool for finding and replacing text in a website's database. This tool, a stand-alone file published as searchreplacedb2.php, includes built-in WordPress compatibility that makes working with WordPress databases a breeze....read more

Gravityscan Introduces Free Daily Security Monitoring With Trust Badge

This entry was posted in WordPress Security on July 24, 2017 by Mark Maunder   0 Replies

Today our team is launching a very exciting program at Gravityscan: a free trust badge program for your website that comes with daily security monitoring. You can find the full announcement on the Gravityscan blog....read more

The June 2017 WordPress Attack Report

This entry was posted in Monthly Attack Activity Report, WordPress Security on July 12, 2017 by Dan Moen   5 Replies

Today's post is a continuation of the WordPress Attack Report series we've been publishing since December 2016. Previous months' reports can be found here:...read more

The WPSetup Attack: New Campaign Targets Fresh WordPress Installs

This entry was posted in WordPress Security on July 11, 2017 by Mark Maunder   52 Replies

At Wordfence, we track millions of attacks from a wide variety of sources every day. From this data we create a list of the worst-of-the-worst attackers and add those to our IP blacklist to protect our Premium customers. We also carefully monitor the activity that those known bad IP addresses engage in....read more

Vulnerability Roundup: 3 Vulnerable WP Plugins and Update Your Joomla

This entry was posted in Wordfence, WordPress Security on July 6, 2017 by Mark Maunder   12 Replies

It's been a tough week for the WP Statistics plugin. Last Friday, Sucuri (now owned by GoDaddy) discovered a SQL injection vulnerability in the WP Statistics plugin version 12.0.7 and older. To exploit the vulnerability, an attacker needs to register an account (or use a compromised account) with subscriber-level access. They can then exploit a weakness in a WP Statistics shortcode to launch a SQL injection attack. This allows them to, for example, create an admin-level user and sign in to your website as an admin....read more

Get the latest WordPress security updates and news

Sign up for WordPress security alerts, Wordfence product updates and security news via email.