Security

Security Vulnerability: Update WPML Immediately

wordpress total defense shield image

Security Vulnerability Update: WPML Plugin We have just received an urgent security vulnerability announcement regarding the popular WPML plugin. WPML is the industry standard for multi-lingual WordPress sites. While there were several vulnerabilities discovered and addressed in the latest update, the most serious of them is an SQL injection problem that allows anyone to read…

Continue...

Revolution Slider Vulnerability Used by Malware to Infect more than 100,000 WordPress Sites

wordpress total defense shield image

A mysterious malware, taking advantage of a Revolution Slider vulnerability, has compromised 100,000 or more sites running the WordPress content management system, turning infected sites into attack platforms that can target visitors, according to security researchers. Researchers for Sucuri have confirmed the outbreak is taking advantage of a known vulnerability in Slider Revolution, (RevSlider), a…

Continue...

Serious WordPress Security Vulnerability in WordPress Download Manager

wordpress total defense shield image

WordPress Security Alert: The WordPress Download Manager plugin has a serious vulnerability that allows a remote attacker to upload malicious scripts to your website, gain administrative access and modify passwords! Version 2.7.4 and older of WordPress Download Manager contain this vulnerability, but their changelog confirms this has been fixed as of version 2.7.5. This alert…

Continue...

WordPress Security, Best 5 Practices

wordpress total defense shield image

WordPress frequently gets accused of being insecure. The truth is, the vast majority of WordPress security issues are the fault of the site admin and not WordPress itself. Here are five security practices every WordPress site administrator should use to immediately reduce the chances their site will be hacked. Get WP Total Defense, The Complete…

Continue...

Prevent WordPress Login Brute Force Attacks in 2 Steps

Following directions from your ISP

WordPress Login – Brute Force Attack Recently, there was a highly-distributed WordPress attack that affected sites worldwide. These attacks seem to be happening more often and not just to major websites. For some time now I’ve using security solutions that can automatically add IP addresses to a blacklist when they exceed a certain number of…

Continue...