WordPress Security Blog

What Is WordPress File Integrity Scanning & Why Your Site Needs It?

Have you ever had to clean your WordPress website from a malware infection? Do you know how to find out which code was compromised? Do you know if your developers or agency left backup and leftover files on your website that can leave you exposed? This post explains how File integrity monitoring (FIM) helps you […]

Passwords Management Best Practices For WordPress Administrators

“Use a strong and different password for every online service, device, email account and website you have.” As an owner  or contributor to a few WordPress sites you are subscribed to an overwhelming number of online services and websites. And even though you agree with the above statement, it is very difficult for you to […]

Announcing The New Website File Changes Monitor Plugin for WordPress

We have been toying with the idea of developing a WordPress file integrity scanning and monitoring plugin for quite some time. However, we did not want to develop just another file scanning plugin. We wanted to develop a WordPress file scanning plugin that addresses the issues existing  ones have! So in January we went back […]

The Security Precautions One Should Take When Migrating A CMS

A content management system (CMS) is a tool that helps you and businesses create, manage, distribute and publish digital content on a website. It is basically a web application which can be used by both developers and non-technical people, like WordPress. There are plenty of CMS solutions you can choose from. Each one of them […]

DNS Tools & Queries For WordPress Users & Administrators

When you buy a new domain for your WordPress site you have to configure the name servers and other DNS records. Configuring your the Domain Name System (DNS) for your domain is a simple process, and it becomes even easier when you understand how DNS works, what are Domains, Registrars and DNS records. However, a […]

How Does A VPN Work?

In recent years Virtual Private Networks (VPN) have become increasingly popular with both business and home users. And it’s reasonable to assert that this interest in VPN solutions has been amplified by the various security and privacy issues that have been highlighted in the mass media. Yet many people, even those who use VPNs on […]

PCI DSS Compliance for WordPress eCommerce & Business Sites

If you have an ecommerce or business WordPress site then PCI compliance is not new for you. As an online merchant / seller your WordPress website has to be compliant to the PCI DSS regulations, otherwise you risk being fined. Even if you use a third party payment gateway such as PayPal or Stripe, there […]

High-Tech Bridge COO Talks About Web & WordPress Security

As of the beginning of 2019, WordPress powers 33% of the top ten million websites, confirming it as the most popular and widely used blogging and CMS platform again. Such popularity attracts a lot of attention, and application security software companies which typically focus on security solutions for custom web applications are now also interested […]

Automated WordPress Security & Protection with Sucuri

WordPress security is easy, when you have the right automated tools. When I started using WordPress I did all the site hardening myself, manually. WordPress security hardening is not difficult, especially if you have a background in web application security. You can also find quite a few checklists online and follow if you are new […]

DNS for WordPress Admins – Domains, Registrars & DNS Records

Many WordPress site admins only deal with DNS once every blue moon. Mainly when buying a new domain, setting up a new website, and migrating to a new web host. However, since DNS is the core of the internet, and a small mistake in the DNS records can result in visitors not being able to […]