This site uses cookies in accordance with our Privacy Policy.
Wordfence Research and News
Category: WordPress Security
WordPress 4.7.1 Security Release with PHPMailer Fix
WordPress 4.7.1 was released on Wednesday. It contains 8 security fixes including a fix for the PHPMailer issue, which we reported on in late December.
How the Wordfence Firewall Works
In April of 2016 Wordfence launched a full featured WordPress firewall.
The December 2016 WordPress Attack Activity Report
This week we are introducing something new. At the beginning of each month we will be doing a monthly WordPress security report.
Election Hack Report FAQ: What You Need to Know
On Friday we published an analysis of the FBI and DHS Grizzly Steppe report.
US Govt Data Shows Russia Used Outdated Ukrainian PHP Malware
Update at 1am Pacific Time, Monday morning Jan 2nd: Please note that we have published a FAQ that accompanies this report.
WordPress Table Prefix: Changing It Does Nothing to Improve Security
There is an idea that was popularized a few years ago that if you change WordPress table prefix in your database, it helps protect your WordPress website from attackers.
Critical Vulnerability in PHPMailer. Affects WP Core.
A critical remote code execution vulnerability in PHPMailer has been discovered by Polish researcher Dawid Golunski.
Who is Really Behind the Ukrainian Brute Force Attacks?
Last Friday we published a report showing a significant increase in Brute Force Attacks.
Huge Increase in Brute Force Attacks in December and What to Do
Update: We posted a follow-up to this post on Monday December 19th which goes into more detail about the Ukraine IP block where these attacks originate from and we discuss possible Russia involvement.
5 Things to be Aware of When Buying WordPress Security
If you are new to WordPress or reevaluating your security strategy, you are overwhelmed by choice in today’s market.
Breaking WordPress Security Research in your inbox as it happens.
