Updates on WordPress security, Wordfence and what we're cooking in the lab today.

Wordfence Blog

Episode 121: Wordfence is Now a CVE Numbering Authority (CNA)

This entry was posted in Podcasts on June 11, 2021 by Ram Gall   0 Replies

Wordfence is now a CVE Numbering Authority, or a CNA. As a CNA, Wordfence can now assign CVE IDs for new vulnerabilities in WordPress Core, WordPress Plugins and WordPress Themes. An outage at Fastly takes down major websites including Reddit, Twitch, Amazon, and many others. Microsoft patches numerous Windows 0-day vulnerabilities, and Google patches a …
Read More

Malicious Attack Campaign Targeting Jetpack Users Reusing Passwords

This entry was posted in PSA, Research, WordPress Security on June 11, 2021 by Ram Gall   10 Replies

The Wordfence Threat Intelligence and Site Cleaning teams have been tracking a malware campaign that redirects all site visitors to malvertising domains, while attempting to keep site administrators unaware of the infection. Since June 1, 2021, the number of sites we are tracking that have been infected with this malware has more than doubled, and …
Read More

Wordfence is now a CVE Numbering Authority (CNA)

This entry was posted in General Security, WordPress Security on June 10, 2021 by Chloe Chamberland   5 Replies

Today, we are excited to announce that Wordfence is authorized by the Common Vulnerabilities and Exposures (CVE®) Program as a CNA, or CVE Numbering Authority. As a CNA, Wordfence can now assign CVE IDs for new vulnerabilities in WordPress Core, WordPress Plugins and WordPress Themes. WordPress powers over 40% of the World Wide Web in …
Read More

Episode 120: Jetpack Autoupdate Security Patch Bypasses Local Settings

This entry was posted in Podcasts on June 04, 2021 by Kathy Zant   0 Replies

A security fix for an information leak vulnerability was pushed out to WordPress sites using Jetpack that bypassed local settings preventing autoupdates. A ransomware attack on JBS that shut down meat processing operations in the United States has been attributed to REvil, a private Russian ransomware-as-​a-service operation. A critical zero-day vulnerability was discovered by the …
Read More

Critical 0-day in Fancy Product Designer Under Active Attack

This entry was posted in Research, Vulnerabilities, WordPress Security on June 01, 2021 by Ram Gall   2 Replies

Update: A patched version of Fancy Product Designer, 4.6.9, is now available as of June 2, 2021. This article has been updated to reflect newly available information, including Indicators of Compromise. On May 31, 2021, the Wordfence Threat Intelligence team discovered a critical file upload vulnerability being actively exploited in Fancy Product Designer, a WordPress …
Read More

Episode 119: Critical VMWare Vulnerability Threatens Data Centers

This entry was posted in Podcasts on May 28, 2021 by Ram Gall   0 Replies

A Critical Vulnerability in VMWare’s vCenter Server threatens some of the largest data centers in the world. An actively exploited 0-day in macOS was used to take screen shots of infected computers. CodeCov claims another victim as Japanese e-Commerce unicorn Mercari reports a massive data breach. Domino’s India and Air India suffer from large-scale data …
Read More

Severe Vulnerabilities Patched in Simple 301 Redirects by BetterLinks Plugin

This entry was posted in Research, Vulnerabilities, WordPress Security on May 26, 2021 by Chloe Chamberland   0 Replies

On April 8, 2021, the Wordfence Threat Intelligence team initiated the responsible disclosure process for several vulnerabilities discovered in Simple 301 Redirects by BetterLinks, a WordPress plugin installed on over 300,000 sites. One of these flaws made it possible for unauthenticated users to update redirects for the site allowing an attacker to redirect all site …
Read More

Episode 118: Four Android Vulnerabilities Under Active Attack

This entry was posted in Podcasts on May 21, 2021 by Ram Gall   0 Replies

Four memory corruption vulnerabilities are being actively exploited on Android devices and nearly 2 dozen popular Android apps exposed over 100 Million users’ sensitive information in cloud databases. Over 600,000 sites using WP Statistics required a patch to fix a blind SQL injection vulnerability. WP User Avatar undergoes a dramatic rebranding to ProfilePress, adding completely …
Read More

Over 600,000 Sites Impacted by WP Statistics Patch

This entry was posted in Research, Vulnerabilities, WordPress Security on May 18, 2021 by Ram Gall   0 Replies

On March 13, 2021, the Wordfence Threat Intelligence team initiated responsible disclosure for a vulnerability in WP Statistics, a plugin installed on over 600,000 WordPress sites. The vulnerability allowed any site visitor to extract sensitive information from a site’s database via Time-Based Blind SQL Injection. We received a response to our initial disclosure the same …
Read More

Podcast 117: Cyber Attack on Colonial Pipeline Affects Fuel Availability in 17 States

This entry was posted in Podcasts on May 14, 2021 by Kathy Zant   1 Reply

A ransomware attack on Colonial Pipeline affected fuel availability in 17 southeastern US states, and Bloomberg reported that Colonial Pipeline paid $5 million to DarkSide, a Russian ransomware service provider. The Biden Administration issued an executive order to increase US cybersecurity defenses. WordPress 5.7.2 was released to patch a critical object injection vulnerability in PHPMailer. …
Read More

Follow Us

      


Protect your websites with the #1 WordPress Security Plugin

Get Premium
Over 200 million downloads

Wordfence Newsletter

Get WordPress Security Alerts and Product Updates