Denial-of-Service (DoS) attacks: what they are and how to keep your website available
If your website slows to a crawl, pages time out, or customers can’t log in,…
Security Matters
501 errors on your website: what they mean and how to fix them
If you’ve seen a “501 Not Implemented” message, your server is telling the browser: “I…
Malvertising hiding in plain sight on WordPress websites
We’re seeing a malvertising campaign that quietly injects third-party scripts into WordPress sites. It looks…
Secure your file transfers: why SSH keys beat passwords for SFTP
If your team still uploads website files over SFTP with a username and password, you’re…
Hidden backdoors creating WordPress admin accounts
We’re seeing a wave of stealthy backdoors on compromised WordPress websites that quietly create administrator…
Malicious “WordPress Player” plugin: how covert redirects hijack your site
Some WordPress sites are seeing visitors land normally and then—after a short pause—being whisked away…
Ad-jacked: fake Google AdSense injected into WordPress
If your website is suddenly showing strange adverts or new ad code has appeared without…
Cascading Redirects: Protecting Your WordPress Site from JavaScript Malware
WordPress websites are frequent targets for cybercriminals, with new threats emerging all the time. One…
FTP vs SFTP: simple, secure file transfers for WordPress sites
Moving files to and from your website shouldn’t be a headache. If you manage a…
Malicious Redirects on WordPress: How to Detect and Prevent Website Hijacking
In the ever-evolving landscape of cybersecurity, WordPress websites have become frequent targets for malicious actors….