Wordfence Archives - Page 17 of 21

Wordfence Forensic Team and Site Cleaning Officially Launches

Today we are proud to officially announce the formation of the Wordfence Forensic Team and the launch of our site cleaning services.

XSS Vulnerability in Wordfence 6.1.1 to 6.1.6. Severity: 6.1 (Medium)

An hour ago a security researcher, Kacper Szurek, reported a reflected XSS vulnerability in the current version of Wordfence.

Announcing a new Firewall, a Threat Defense Feed and a New Approach

This morning at 9am Pacific time we rolled out a new kind of firewall to over 1 Million active WordPress websites.

A Backdoored WordPress Plugin and 3 Additional Vulnerabilities

We have several plugin vulnerabilities we’d like to bring to your attention this week.

Why Wordfence Supports Strong Encryption Without Backdoors

This morning global headlines are discussing Apple’s move to oppose a court order issued by the US government regarding breaking into it’s own iPhone.

The 2015 WordPress Security Survey Results are out

To bring a close to 2015 we conducted a WordPress security survey.

Moving to Endpoint Security for WordPress

You’ve probably seen the term ‘endpoint’ talked about in the press recently in the context of information security.

Brute Force Attacks, Presidential Candidates and Plugin Vulnerabilities

Early this week we are tracking an approximate doubling of brute force attacks (login guessing attacks) on WordPress sites.

Storing European User Data on USA Servers? Better read this…

Exec summary: If you are storing European visitor data on servers based in the USA (most busy WordPress sites are), you are exporting “personally identifiable information”, or PII, of users in Europe to the United States.

WordPress XML-RPC Brute Force Attacks with multiple logins.

We’ve had a few questions about whether Wordfence protects against a newer form of attack that seems to have received some press coverage recently.

Wordfence Research and News