This site uses cookies in accordance with our Privacy Policy.
Wordfence Research and News
Category: General Security
Cryptomining Supply Chain Attack Hits Government Websites
In the past 24 hours, Security researcher Scott Helme discovered that a third party accessibility plugin called ‘Browsealoud’ had their servers compromised.
Your Site Reputation Makes You a Target
I’ve mentioned Troy Hunt a few times on this blog. He’s one of the good guys in our industry and runs a website called haveibeenpwned.com.
New Attacker Scanning for SSH Private Keys on Websites
Wordfence is seeing a significant spike in SSH private key scanning activity.
PSA: Severe Vulnerability in All Wi-Fi Devices
This is a public service announcement (PSA) from the Wordfence team regarding a security issue that has a wide impact.
Gravityscan Lowers Price and Adds Free Trial
We have an exciting announcement today regarding the Gravityscan project. As you know the Wordfence team launched Gravityscan on May 16th of this year.
The Man Behind Plugin Spam: Mason Soiza
This post is part of a series. This is the second post and a follow-up to our first story titled “Display Widgets Plugin Includes Malicious Code to Publish Spam on WP Sites“.
Cyber Insurance: Should You Get It?
You have probably noticed the gradual increase in the number of ads over the past two years selling “cyber insurance,” or insurance that covers a hack.
Dreamhost is Under DDoS Attack
Dreamhost is currently experiencing a DDoS attack. I am updating this post in real-time as the situation unfolds.
PSA: 4.8 Million Affected by Chrome Extension Attacks Targeting Site Owners
This is a public service announcement from the Wordfence team regarding a security issue that has a wide impact.
NGINX and PHP Malware Used in Petya/Nyetya Ransomware Attack
Author’s note: This is a technical blog post which I’m hoping server administrators and web hosting providers will find helpful.
Breaking WordPress Security Research in your inbox as it happens.
