TechRadar

WordPress plugin auth bypass exploited almost immediately after disclosure

Almost immediately after being disclosed to the public, a vulnerability in a WordPress plugin was used in an attack, security researchers have warned. Wordfence revealed an authentication bypass in ...
The Next Web

Authy releases a WordPress plugin enabling two-factor authentication to better protect against hacking

Authy, the Y Combinator-funded service that aims to better protect data online with two-factor authentication, has released a WordPress plugin so that publishers will feel secure about their blogs. In ...

WordPress plugin with 900k installs vulnerable to critical RCE flaw

A critical vulnerability in the WPvivid Backup & Migration plugin for WordPress, installed on more than 900,000 websites, can be exploited to achieve remote code execution by uploading arbitrary files ...
Searchenginejournal.com

The WordPress Security Guide To Keep Your Site Safe

There are eight fundamental actions that all WordPress publishers should consider in order to mitigate malicious activities and vulnerabilities. Following these best practices will help ensure that a ...