Security Sunday: Is WordPress Secure?
In this post, I’ll be breaking down the WordPress ecosystem along with some security best practices to help you understand whether WordPress is safe and how to protect your site from attacks.
Security Sunday: Cross-Site Scripting: The Real WordPress Supervillain
Cross-Site Scripting is a type of vulnerability that allows a malicious actor to inject code, usually JavaScript, into otherwise legitimate websites. The web browser being used by the website user has no way to determine that the code is not a legitimate part of the website, so it displays content or performs actions directed by the malicious code. XSS is a relatively well-known type of vulnerability, partially because some of its uses are visible on an affected website, but there are also “invisible” uses that can be much more detrimental to website owners and their visitors.
Security Sunday: Keeping Up With PHP Updates
In this post, we’ll be going over why outdated PHP versions can lead to an increase in vulnerabilities with your website and how you can minimize these risks to protect your site and your visitors.
Security Sunday: Top 10 Security Tips to Keep Your WordPress Site Healthy
Follow these 10 WordPress security tips to keep your site from falling ill from malware this winter season.
Security Sunday: How to Set Up a Content Security Policy (CSP) in 3 Steps
A Content Security Policy (CSP) is a policy that uses headers or meta elements to restrict or greenlight what content loads onto your website. It is a widely-supported security standard recommended to anyone who operates a website.
Security Sunday: How Do Websites Get Hacked?
As much as the web has grown, surprisingly not a lot has changed in how websites get hacked. The most important thing you can do in keeping the web – and your own sites and visitors – safe is to understand these unchanging truths and hold them close to heart.
Security Sunday: How to Fix a Hacked WordPress Website
We have created this helpful guide for designers who’re looking to fix a hacked WordPress website. Remember to keep this guide handy, you never know when you might just need it. Let’s get started.
Security Sunday: The Hacker Motive: What Attackers Are Doing with Your Hacked Site
The Wordfence Live team covered “The Hacker Motive: What Attackers Are Doing with Your Hacked Site”. This companion blog post reviews the motives discussed live during Wordfence Live and dives deeper into the minds of attackers.
Security Sunday: 2020 Website Security Glossary
To support a safer internet for everyone, we’ve compiled this website security glossary. Based on our research, this is today’s most relevant terminology in website security.
Security Sunday: WordPress Hardening: 7 Ways To Harden Your Website Security
WordPress hardening is one of the most important investments that should be made immediately after creating a website in WordPress. As unprotected WordPress sites are usually believed to be vulnerable to attacks, hardening a WordPress website should be seen as a necessary task soon after the website is created.