What a week. And, can you actually believe that we’re in the month of June already? 2013 is about half-way done already. So, the question is, have you accomplished everything that you had set out to do in 2013? Are you slacking? Get to it!
Hope you guys are getting ready for the weekend because not only is it a holiday (if you’re in the US) but Monday is the 10th Anniversary Party! Dig it! So until then, chew on some of these links while you wait to party!
WordPress security is top-of-mind with a lot of people lately with the big botnet scare that’s apparently still happening in pockets here and there. That’s why we have companies like Sucuri and their great staff that are constantly monitoring the security landscape for those that don’t know about it until it’s too late. Dre Armeda is leading a lot of that charge and in an oldie-but-goodie presentation from WordCamp Atlanta 2012 that finally got uploaded to WP.tv he goes over End-User security that’s worth a look:
With all of the security discussions as of recent it’s been top of mind for many WordPress users and developers alike. Most of us are firming up our security options, downloading plugins, and asking better questions about WordPress security. There are also some that are reminding us that WordPress is secure, so don’t get it twisted! It’s time to clear up the debate once and for all. Despite all the doubts (and some haters), WordPress core is without a doubt one of the most secure platforms you can choose to put a site on. Of course, a WordPress install is only as secure […]
This is your WordPress weekend roundup – blog posts that we couldn’t entertain fully in the past week but that might still be worth your time. We spend our weekend curating this list so that you don’t have to! We hope that by spending a few hours (or more than a few hours) that we save hundreds if not thousands of our own community’s time! It is an opportunity we can’t pass up! And at this point we’ve done over 20 of these at this point! Ready? Here we go!
It’s been a pretty crazy week here at 8BIT and WP Daily but that doesn’t mean that it hasn’t bee fun – we’re having tons of fun getting tons of stuff done, I just wish we had an extra few hours in each day to get it all sorted! This probably isn’t too far from what you guys are experiencing so I’ll just leave it at that, but I hope your resting his weekend and finding time to hang out with those that matter, like your friends, your family, and your bed. I know that I’ve already had my share […]
Unless you’ve been seriously living under a rock on an epic vacation then you’re already aware a number of security related issues that have cropped up recently that you should definitely be aware of. Most recently, just to backfill anyone who did in fact miss out, the brute force attacks and even cacheing plugins issue is something to take note of and remedy, not just for your personal blogs but all the customers and clients that you may manage as well. But there’s always more to do and more to learn and at times it can be overwhelming to think […]
Tony Perez over at Sucuri shared yesterday a significant vulnerability that’s landed among some of the top plugins used out there which also happen to be the top caching plugins for WordPress. If you’re a fan and a user of WP Super Cache or W3 Total Cache then this update is for you! There’s a RCE (Remote Code Execution) vulnerability in these plugins that allows an attacker to execute commands on the blog directly. First discovered by kisscsaby in the WordPress forums it has been quickly dealt with via the plugin authors but that doesn’t mean that you haven’t updated yet! A few other blogs have also […]
I was passing a few conversations back and forth with my team in the past week about the growth of WordPress in light of the challenges of security and the ever-increasing target painted on the back of our collective ecosystem and it hit me that the WordPress security industry might just be one of the best points of entry if you’re looking to build a business in a growing niche market. Makes sense, right? With the recent global scare related to the super botnet that we’ve all talked about (and tons of blog posts) there is no surprise that I’m seeing more […]
At this point in time you’ve probably already read the news that was brought to many of our attention via Sucuri who found a huge gaping hole in a very popular WordPress plugin (over 900,000 downloads) and that was being leveraged for ill-gotten gain, spamware into sites that ran it: If you are using the Social Media Widget plugin (social-media-widget), make sure to remove it immediately from your website. We discovered it is being used to inject spam into websites and it has also been removed from the WordPress Plugin repository. But the rub was that it wasn’t an “invasion” of […]