Security and Privacy Considerations for Website Owners and Developers – WebDevStudios

by Suzette Franck for WebDevStudios.com As a multiple website owner and WordPress front-end developer, I am passionate about website security and privacy practices, and the applications and requirements as a modern web developer. I have come to learn that just because you can do something, doesn’t mean that you should. Care must be given to […]

W3 Total Cache Implementation Vulnerability | Sucuri Blog

Just in time for Christmas, it was announced on the full disclosure list a security (configuration/implementation) bug on W3 Total cache (W3TC), one of the most popular WordPress plugins. The issue is connected to the way W3TC stores the database cache (in a public accessible directory). It can be used to retrieve password hashes and […]

Robots.txt Google Security Alert from Wordfence

I am a huge fan of the free WordPress Security plugin, Wordfence. I received this email yesterday regarding robots.txt and I thought I’d publish here for everyone’s reference: Dear WordPress Publisher, There is a subtle vulnerability that has emerged in the robots.txt standard and how Google indexes data. The issue may cause the existence of […]

Sucuri SiteCheck Malware Scanner Plugin for WordPress | Sucuri Blog

If you’re a WordPress user, love our free SiteCheck scanner, or already use our free SiteCheck Malware Scanner Plugin for WordPress, we have an update for you. Last night we released version 1.2 of the plugin which cleans up various parts of the plugin. There’s still a lot more work to do but this was […]

How to Scan Your WordPress Site for Potentially Malicious Code

My personal favorite is Sucuri.net, but I also love WordFence, which is not mentioned in this great article… Often we get asked by our users, is there a way to scan your WordPress site for potentially malicious code? The answer to that question is YES, YES, and YES. There are both free and paid tools […]