By Jeffro on March 9, 2012
Sucuri has published more information regarding the compromising of at least 30,000 domains. Based on their research, they are ruling out the possibility that the attacks are taking advantage of a new vulnerability within the core of WordPress.
The first question is how are these sites getting hacked? On all the cases we analyzed, they either had outdated versions of WordPress, or of a plugin. We can safely rule out any new vulnerability on WordPress itself.
To stay on top of the latest malware threats on the web, you should subscribe to their RSS feed. Perhaps the more people that realize this stuff is happening on a daily basis, the more it will persuade them to keep sites, plugins, and themes updated.
Posted in News | Tagged malware, security, wordpress |
By Jeffro on March 5, 2012
In what I think is a great service to anyone who operates a website, the security service Sucuri has started to publish articles containing answers to user submitted questions. In their latest installment, they answer some general questions such as why anyone would want to hack your site, what they gain by attacking a website, and how to check if your site is infected, which is of course an advertisement for their free site scanner.
Speaking of their scanner, I checked WPTavern the other day and was relieved to see that the site came up clean. I’ve read too many horror stories from people who have had to try and save compromised websites to know that it’s nothing short of a giant pain in the rear to make sure everything is clean.
Posted in News | Tagged malware, security, sucuri |
