Torque

Security

Top 5 WordPress Security Breaches and How to Rectify Them

Amelia Grant

Filed Under

Security

Published

August 18, 2017

2 Comments

Join the conversation

Holding more than 28 percent of the market share and powering 74.6 million websites across the globe, WordPress is indeed one of the most sought-after Open Source CMS in the world. With enhanced usability and appealing aesthetics, WordPress truly deserves to be the world’s most recognized publishing platform. But the massive usage of WordPress and open source have made it an easy target for cybercrooks, who aim to infect the websites with malware and gain control over their operations. Hacking platforms like WordPress enable these cyber-criminals to infect a considerable number of websites in a short span of time, using […]

WordPress Core is Secure: Stop Telling People Otherwise

Filed Under

Security

Published

October 1, 2016

10 Comments

Join the conversation

Updated: October 1, 2016 It’s time to clear up the WordPress security debate once and for all. Despite all the skepticism, WordPress core is without a doubt one of the most secure platforms you can choose to put a site on. Period. Since Jan. 24, 2013 no major vulnerabilities have been discovered inside WordPress core. That means that across every, up-to-date, WordPress install on every hosting company across the internet, no vulnerabilities in WordPress core have been discovered. That’s unprecedented in open-source software. If you’re skeptical, that’s reasonable. Sometimes it’s hard to ignore rumors. But I’m going to do my […]

Sucuri Report: Outdated Plugins Leading Cause Of WordPress Site Hacks

Marie Dodson

Filed Under

Security

Published

May 25, 2016

No Comments

Start the conversation

Three plugins were responsible for 25 percent of all WordPress hacks discovered in the first quarter, Sucuri said in its recently released report on post-hack actions by attackers. According to the report, outdated versions of RevSlider, GravityForms plugins, and TimThumb Script were the leading cause of WordPress site hacks and exploits. RevSlider accounted for the majority of vulnerabilities caused by the top three outdated plugins, which could in part be because it’s bundled within themes and other frameworks. “The biggest challenge with RevSlider however, is that it’s embedded within Themes and Frameworks and some website owners are unaware they have it installed until it has […]

People React To Emoji Reactions Plugin

Emily Schiola

Filed Under

Featured, News, Security

Published

March 9, 2016

1 Comment

Join the conversation

On Sunday, Gary Pendergast announced his work to bring emoji reaction support to WordPress, and the community had some reactions of its own. As of now, you can download the emoji reaction plugin to allow users to respond to your posts with a smile or frown, rather than a simple thumbs up or thumbs down. The idea is much like the recent changes made to Facebook. Once the idea of making emojis part of core, the community had some strong opinions. Some were in favor and genuinely excited about the prospect of allowing emojis to be a part of everyday […]

WordPress Security: 13 Steps to Make Your Website Bulletproof

Filed Under

Featured, Security

Published

April 27, 2015

3 Comments

Join the conversation

Let me just say it: WordPress is awesome. Millions of people have flocked to the platform and use it in their daily business. However, there’s a dark side to the growing popularity of WordPress: Because it powers more and more websites, the number of hackers and other shady individuals who target WordPress is also steadily growing. As a consequence, security is an increasing concern for all WordPress users. Yet, at the same time, it is a much neglected topic, because, quite frankly, many find it boring. You know what else is boring? Health insurance. But just like WordPress security measures, you are glad […]

11 simple tips to boost your website’s security

Filed Under

Featured, Security

Published

January 14, 2015

2 Comments

Join the conversation

When launching a new website it’s easy to get carried away with crafting the perfect design and adding great content. For many, including myself, security is merely an afterthought. However, every year attacks on WordPress websites are growing in-line with the platforms popularity. More worryingly, 70% of WordPress websites have vulnerabilities that hackers could exploit. With minimal protection, that means your precious website could be a hacker’s next play-thing – scary, right? Today I want to help you boost your WordPress website’s security with eleven simple tips you can implement right away. If you want to build a successful, sustainable […]

eCommerce Stores: Are You Ready for Black Friday?

Filed Under

Security

Published

November 26, 2014

2 Comments

Join the conversation

Black Friday is finally upon us, and that can only mean one thing: millions of crazed shoppers fighting to grab the biggest bargains. Although it’s the brick-and-mortar stores that receive most of the media coverage, Black Friday is also an important time for eCommerce stores: with an ever-increasing number of online shoppers, there is serious money to be made! Today, I want to help you manage your eCommerce store’s Black Friday by giving you tips for handling traffic, creating promotions, and maximizing sales — I will also be introducing you to several WooCommerce plugins to help you add relevant Black […]

11 WordPress Security Tips to Keep Hackers Away

Filed Under

Featured, Security

Published

July 14, 2014

8 Comments

Join the conversation

There is a good chance that your WordPress website is under constant attack from hackers even though you might not be aware. Unless you have a system in place that alerts you of the failed login attempts or other suspicious activity, the moment you actually find out your site has been breached is when it’s too late to do anything about it. It’s always in your best interest to proactively secure your site from spammers and hackers. The idea of setting up all of the right security settings may not be something that you joyously look forward to, but if you ask […]

All WordPress.com Subdomains Encrypted By End 2014

Filed Under

Featured, Security

Published

June 10, 2014

No Comments

Start the conversation

Last week, Automattic’s General Counsel Paul Sieminski announced that all *.wordpress.com subdomains will be served over SSL (Secure Sockets Layer) by the end of 2014. Sieminski wrote: In the face of intrusive surveillance, we believe that everyone in the tech community needs to stand up and do what they can, starting with their own sites and platforms. For us, that means working to secure the connection between users and our websites. We’ll be serving all *.wordpress.com subdomains only over SSL by the end of the year. It’s been a year since whistleblower Edward Snowden leaked files revealing the National Security […]

WordPress’s Zombie Problem: Why Automatic Updates Had to Happen Now

Filed Under

Featured, Security

Published

March 5, 2014

2 Comments

Join the conversation

WordPress powers more than 20% of the web, or about 75 million sites, and is steadily becoming more pervasive. The massive WordPress community has helped secure the platform by quickly identifying and resolving bugs, glitches, and security flaws. But, as WordPress evolves so have the abilities of attackers.  WordPress security is changing rapidly—here’s what you can do to decrease your vulnerability. Protecting Yourself Against Hackers The sheer size of WordPress has made it a huge target for hackers. So, it’s important that site owners practice safe security habits–like using strong passwords, and installing trusted plugins and themes. The largest, most established websites have always […]

How do you stay on top of your WordPress game?

A good way to start is to sign up for our weekly newsletter. We keep you up to date by bringing you the freshest WordPress content from the brightest minds in the industry.