Wordfence opens the K-12 site audit and site cleaning service for publicly funded state schools worldwide. Machine learning is now a big part of our malware identification process, which will speed new malware signatures to deployment for WordPress sites protected by Wordfence. A bug in Sudo can let attackers with access to a local system […]
More info:
https://www.wordfence.com/blog/2021/02/episode-103-wordfence-innovates-with-machine-learning-and-security-for-schools/
Wordfence opens the K-12 site audit and site cleaning service for publicly funded state schools worldwide. Machine learning is now a big part of our malware identification process, which will speed new malware signatures to deployment for WordPress sites protected by Wordfence. A bug in Sudo can let attackers with access to a local system […]
More info:
https://www.wordfence.com/blog/2021/02/episode-103-wordfence-innovates-with-machine-learning-and-security-for-schools/
On December 9, 2020, the Wordfence Threat Intelligence team discovered a Cross-Site Request Forgery (CSRF) to Stored Cross Site Scripting (XSS) vulnerability in Contact Form 7 Style, a WordPress plugin installed on over 50,000 sites. Please note that this is a separate plugin from Contact Form 7 and is designed as an add-on to that […]
More info:
https://www.wordfence.com/blog/2021/02/unpatched-vulnerability-50000-wp-sites-must-find-alternative-for-contact-form-7-style/
On December 9, 2020, the Wordfence Threat Intelligence team discovered a Cross-Site Request Forgery (CSRF) to Stored Cross Site Scripting (XSS) vulnerability in Contact Form 7 Style, a WordPress plugin installed on over 50,000 sites. Please note that this is a separate plugin from Contact Form 7 and is designed as an add-on to that […]
More info:
https://www.wordfence.com/blog/2021/02/unpatched-vulnerability-50000-wp-sites-must-find-alternative-for-contact-form-7-style/
For WordPress, 2021 started on a high note. Read on to learn about updates from last month. WordPress release updates WordPress project executive director — Josepha Haden (@chanthaboune) shared big picture goals for WordPress in 2021. Highlights include shipping Full Site Editing — first on the Gutenberg plugin in April 2021 and later in core […]
More info:
https://wordpress.org/news/2021/02/the-month-in-wordpress-january-2021/
WordPress 5.6.1 is now available! This maintenance release features 20 bug fixes as well as 7 issues fixed for the block editor. These bugs affect WordPress version 5.6, so you’ll want to upgrade. You can download WordPress 5.6.1 directly, or visit the Dashboard → Updates screen and click Update Now. If your sites support automatic background updates, they’ve already started the update process. WordPress […]
More info:
https://wordpress.org/news/2021/02/wordpress-5-6-1-maintenance-release/
Wordfence is the leader in WordPress security, protecting over 4 million WordPress sites from malicious attacks. With new malware variants discovered daily, we now have a new weapon in our arsenal against WordPress attacks: Machine Learning. How Wordfence identifies malware For years, the Wordfence Threat Intelligence team has stayed ahead of attackers by quickly identifying […]
More info:
https://www.wordfence.com/blog/2021/02/machine-learning-gives-wordfence-an-advantage/
Have you ever wanted to make a WordPress site private? So that only specific users are allowed access? For example, for my found-images site eChunks.com, I decided to require user login in order to access any content. So now for that site, public access is not allowed, and any posts, images, and all other content […]
More info:
https://perishablepress.com/wordpress-site-private-access/
Last November, we wrote about how attackers are using JavaScript injections to load malicious code from legitimate CSS files. At first glance, these injections didn’t appear to contain anything except for some benign CSS rules. A more thorough analysis of the .CSS file revealed 56,964 seemingly empty lines containing combinations of invisible tab (0x09), space […]
More info:
http://feedproxy.google.com/~r/sucuri/blog/~3/EPjSXpEILoM/whitespace-steganography-conceals-web-shell-in-php-malware.html
WordPress 5.7 Beta 1 is now available for testing! This software is still in development, so it’s not recommended to run this version on a production site. Consider setting up a test site to play with the new version. You can test the WordPress 5.7 Beta 1 in two ways: Install/activate the WordPress Beta Tester plugin […]
More info:
https://wordpress.org/news/2021/02/wordpress-5-7-beta-1/
