Jetpack has released version 5.6.1 which hardens the Contact Form module by improving permissions checking when updating a form’s settings. In addition to security fixes, the character count for when Publicize publishes content to Twitter has been increased to 280. This release also fixes a bug that disabled the ability to save widgets after removing a Widget Visibility rule. Users …
A Complete Guide to WordPress Password Security
I know I talk a lot about how it’s your responsibility to ensure that your WordPress websites are secure. (Because it is.) That said, there are instances where you have very little control over the vulnerabilities that other users introduce to the site. Specifically, I’m referring to users who don’t abide by smart and safe […]
Is WordPress Safe for eCommerce Websites?
WordPress is not inherently built for eCommerce. In order to sell anything on your website, you need to use a theme and a series of plugins in order to tap into that functionality (or you need to code it all from scratch). But just because WordPress on its own is not eCommerce-ready doesn’t make it […]
GitHub Launches Security Alerts for JavaScript and Ruby Projects, Python Support Coming in 2018
Last month GitHub launched its Dependency Graph feature that tracks a repository’s dependencies and sub-dependencies under the Insights tab. This week the company rolled out an expansion of the feature and will now identify known vulnerabilities and send notifications with suggested fixes from the GitHub community. Dependency graphs and security alerts are automatically enabled for public repositories, provided the repository …
7 Best WordPress Backup Plugins of 2017 Compared (Pros and Cons)
Let’s say disaster strikes your website. You could get in touch with your hosting company if your plan includes regular backups. But it might not be enough. Think about it: Your site goes down because a bad or incompatible plugin or theme broke it when you made the latest update. Your site goes offline and […]
17 Best WordPress Security Plugins to Keep Your Site Secure
There are a number of ways in which your site could become the victim of a security breach. Unsupported and outdated plugins and themes are one way. Weak password rules and unfettered access to WordPress is another. Hackers could also get in through your hosting server. And on and on the possibilities go. Needless to […]
7 Free Online Tools to Scan Websites for Security Vulnerabilities
In Q3 of 2016, Sucuri reported that WordPress again led all content management systems with the number of hacked websites. WordPress alone claimed ownership of 74% of all detected infections and vulnerabilities. Ugh. That’s always a huge let-down. With people already looking for reasons not to use WordPress or hearing horror stories about this very […]
Is Your Website GDPR Compliant? How to Get Ready for the General Data Protection Regulations
The General Data Protection Regulation (GDPR) is important new legislation in the area of data protection. Developed by the European Union, it’s designed to strengthen individuals’ rights regarding the collection, use and storage of their personal data. The law applies to businesses or organisations in the European Union. Those outside the EU who offer goods […]
Is WordPress Secure?
The question of whether or not WordPress is secure is complicated. While it’s obviously a secure enough platform for roughly a quarter of all websites around the world that are powered by WordPress, it’s not without its flaws. So, who is responsible for keeping WordPress secure? Of course, some of that responsibility ultimately falls on […]
GitHub Launches New Dependency Graph Feature with Security Alerts Coming Soon
GitHub announced a new Dependency Graph feature at the Github Universe conference yesterday. It lists all the dependencies for a repository and will soon identify known vulnerabilities. The graph can be accessed under the Insights tab and currently supports Ruby and JavaScript dependencies with Python coming soon. Public repositories display the graph by default and private repository owners also have …