WordPress Security Blog

Website File Changes Monitor Update 1.1: Email Notifications & More

Today we are releasing update 1.1 of the Website File Changes Monitor plugin. This update is based on the important feedback we got from our users after launching this plugin a few weeks ago. The main highlight of this update are the instant file changes notifications via email. However there is much more to this […]

4 Reasons Password Policies Are Vital for WordPress Users

For every account you set up you should use a unique and difficult password. That’s a given, but you’d be surprised at how many people don’t give a second though to password security. This means that, in many cases, the safest approach is to not leave password safety up to your users. Instead, you can […]

Password Policies Manager Plugin Update 1.2 – Support For Custom Login Pages

Today we announce Password Policy Manager for WordPress update 1.2, the plugin that enables administrators to enforce strong WordPress passwords. The highlight of this update is a new hook that allows theme developers to include the password policies in custom pages. In this update we have also included a few minor improvements and enhancements. Support […]

What Is WordPress File Integrity Monitoring & Why Your WordPress Needs It?

Have you ever had to clean your WordPress website from a malware infection? Do you know how to find out which code was compromised? Do you know if your developers or agency left backup and leftover files on your website that can leave you exposed? This post explains how File integrity monitoring (FIM) helps you […]

Passwords Management Best Practices For WordPress Administrators

“Use a strong and different password for every online service, device, email account and website you have.” As an owner  or contributor to a few WordPress sites you are subscribed to an overwhelming number of online services and websites. And even though you agree with the above statement, it is very difficult for you to […]

Announcing The New Website File Changes Monitor Plugin for WordPress

We have been toying with the idea of developing a WordPress file integrity scanning and monitoring plugin for quite some time. However, we did not want to develop just another file scanning plugin. We wanted to develop a WordPress file scanning plugin that addresses the issues existing  ones have! So in January we went back […]

The Security Precautions One Should Take When Migrating A CMS

A content management system (CMS) is a tool that helps you and businesses create, manage, distribute and publish digital content on a website. It is basically a web application which can be used by both developers and non-technical people, like WordPress. There are plenty of CMS solutions you can choose from. Each one of them […]

DNS Tools & Queries For WordPress Users & Administrators

When you buy a new domain for your WordPress site you have to configure the name servers and other DNS records. Configuring your the Domain Name System (DNS) for your domain is a simple process, and it becomes even easier when you understand how DNS works, what are Domains, Registrars and DNS records. However, a […]

How Does A VPN Work?

In recent years Virtual Private Networks (VPN) have become increasingly popular with both business and home users. And it’s reasonable to assert that this interest in VPN solutions has been amplified by the various security and privacy issues that have been highlighted in the mass media. Yet many people, even those who use VPNs on […]

PCI DSS Compliance for WordPress eCommerce & Business Sites

If you have an ecommerce or business WordPress site then PCI compliance is not new for you. As an online merchant / seller your WordPress website has to be compliant to the PCI DSS regulations, otherwise you risk being fined. Even if you use a third party payment gateway such as PayPal or Stripe, there […]