This site uses cookies in accordance with our Privacy Policy.
Wordfence Research and News
Ask Wordfence Episode 2: How to Secure an Old Version of WordPress
Today we are publishing episode 2 of our “Ask Wordfence” series.
Gravityscan Lowers Price and Adds Free Trial
We have an exciting announcement today regarding the Gravityscan project. As you know the Wordfence team launched Gravityscan on May 16th of this year.
Ask Wordfence Episode 1: Setting Up Minimum Viable WordPress Security
Last week we emailed a small group of our customers asking them to contribute questions for a series of videos we will be running.
9 WordPress Plugins Targeted in Coordinated 4.5-Year Spam Campaign
On Tuesday last week we published a post that described how someone had released an update to the Display Widgets plugin which contained a backdoor that allowed them to publish content to any site using the plugin.
WordPress Security Update 4.8.2 – Update Immediately
WordPress Core version 4.8.2 has just been released. This is a minor update and a security release which means that your sites will update automatically within the next 24 hours unless you have disabled auto updates.
The Man Behind Plugin Spam: Mason Soiza
This post is part of a series. This is the second post and a follow-up to our first story titled “Display Widgets Plugin Includes Malicious Code to Publish Spam on WP Sites“.
Display Widgets Plugin Includes Malicious Code to Publish Spam on WP Sites
Note: This post is the first part of a series. The series has a second detailed follow-up which discusses the identity of the person behind the Display Widgets plugin spam.
Just How Good Is Wordfence Customer Service?
When my co-founder, Kerry and I started scaling Wordfence as a business, our first hire was in customer service.
Cyber Insurance: Should You Get It?
You have probably noticed the gradual increase in the number of ads over the past two years selling “cyber insurance,” or insurance that covers a hack.
XSS Vulnerability in WooCommerce Product Vendors Plugin
A reflected cross site scripting vulnerability has been reported in a premium WordPress plugin for WooCommerce known as the ‘Product Vendors‘ plugin.
Breaking WordPress Security Research in your inbox as it happens.
