WordPress
Backdoor brute-forces Joomla and WordPress sites
A recently discovered backdoor with brute-forcing capabilities that are used against Joomla- and WordPress-managed blogs has shown, once again, the importance of keeping your …
The security of WordPress plugins
Checkmarx’s research lab identified that more than 20% of the 50 most popular WordPress plugins are vulnerable to common Web attacks, such as SQL Injection. Furthermore, …
WordPress sites targeted by mass brute-force attack
US-CERT has issued an alert regarding the ongoing massive brute-force attacks against WordPress sites, warning users and administrators to keep their installation always …
WordPress.com adds 2-factor authentication option
WordPress users can finally secure their account(s) with two step authentication. The optional feature has been rolled out on Friday and is accessible to all users. To set it …
WordPress 3.5.1 fixes 37 bugs
WordPress 3.5.1, now available for download, is a maintenance and security release for all previous versions that fixes 37 bugs. WordPress 3.5.1 also addresses the following …
WordPress 3 Ultimate Security
This book has over 350 pages and, as the title says, aims to be the ultimate Wordpress 3 security guide. The author built the book around the premise that the website is as …
Exploit tool hitting Joomla and WordPress sites
Joomla and WordPress sites’ administrators should consider updating to the latest version of their respective content management system as soon as possible since, …
Reuters hacked again
Reuters’ blogging platform has been hacked for the second time in two weeks, and this time false news that Saudi Arabia’s Foreign Minister Prince Saud al-Faisal …
Reuters hack was due to old WordPress version
While the individuals responsible for the recent hijacking of Reuters’ blogging platform and one of its Twitter accounts are still unknown, it has emerged that the …
Guard your website against malicious activity with WebsiteDefender
Acunetix released WebsiteDefender, an online security monitoring service which helps you secure websites against malware and hacker activity. Google’s security blog …
1,000+ WordPress sites compromised through automatic update feature
More than 1,000 WordPress blogs have been modified to redirect visitors to sites serving malware, affiliate and pay-per-click redirectors, and low quality PPC search result …
New WordPress update a must for users
A new stable version of the popular free open source blogging tool WordPress is available for download, and users are advised to do get a move on and install it, as it’s …
Featured news
Resources
Don't miss
- LiteLLM vulnerability under active attack, CISA warns (CVE-2026-42271)
- The architecture of subtraction: Why it’s time to erase the roads, not just map the traffic
- Treating AI agents like service accounts for federated query security
- Malware ships with bugs that defenders could use against it
- Qilin ransomware affiliate exploited Check Point VPN zero-day (CVE-2026-50751)