Archive For: Security Tips
-
November 15, 2017
Categories:
-
This is the fifth installment in a new series we started last month called Ask Wordfence. You can access previous posts here. Today’s question comes from Brooke in Harrisonburg: When I see IPs blocked by firewall, or blocked for trying to log in, is there a benefit to permanently blocking them, one by one, or is... Read More
-
November 13, 2017
Categories:
-
During regular audits of our Sucuri Firewall (WAF), one of our researchers at the time, Slavco Mihajloski, discovered an SQL Injection vulnerability affecting bbPress. If the proper conditions are met, this vulnerability is very easy to abuse by any visitors on the victim’s website. Because details about this vulnerability have been made public today on... Read More
-
November 8, 2017
Categories:
-
You would never leave the front door to your house wide open when you’re not home would you? Doing so would allow criminals to seize the opportunity of stealing your valuables. That’s the same way you can look at website hacking. Leaving your website unprotected is like establishing an open-door policy with hackers, giving them... Read More
Wordfence just requested that we help spread the word! Severe Vulnerability in All Wi-Fi Devices This entry was posted in General Security on October 16, 2017 by Mark Maunder This is a public service announcement (PSA) from the Wordfence team regarding a security issue that has a wide impact. Today is being called “Black Monday”... Read More
How to Protect WordPress According to Wordfence, the WP Setup attack is gaining momentum. You can avoid falling victim, by following the How to Protect Your WordPress procedures below: A Safe Way to Install a New WordPress Before you begin your WordPress installation, make a .htaccess file in your web directory containing the following: order... Read More
You know by now that WordPress is a fairly easy system to install and have your website up and running quickly. However, it’s just as easy to leave your site open to hackers. What I will provide to the readers of this site are tips for hardening this platform that we have all come to... Read More
Brute Force Attacks WordPress brute force attacks refer to the trial and error method of entering multiple username and password combinations over and over until a successful combination is discovered. The brute force attack method exploits the simplest way to get access to your website: your WordPress login screen. Two very simple solutions to preventing... Read More
Tap To Call