We will explain why a site is infected with malware in WordPress and moves itself to another site, and why the malicious code comes back after a while, no matter how many times you remove it.
Tag: WordPress check Page 1/7
If you find multiple wp-blog-header.php, wp-cron.php, and .htaccess files outside of the public folder on your server in WordPress, be careful. These files are most likely malware that propagates automatically.
WordPress sites, no matter how small, are actually exposed to hacking attacks on a daily basis. We will explain how to detect this WordPress hacking and block IPs.
This section explains how to prevent a brute force attack on XMLRPC.php in WordPress.
We will explain the vulnerabilities that you should be especially aware of in WordPress.
This section describes the features that should be implemented in the WordPress security plugin.
This section describes the problem of wordpress upgrade.php and install.php leaking the wordpress version and how to deal with it.
This is a brief glossary of common vulnerability attacks on WordPress.
Malware infections are spreading in WordPress that cleverly disguise themselves as common programs.
If a page you do not remember creating is registered in Google Search Console, it is possible that your WordPress site was infected with malware and generated a malicious page.
This section describes the installation of a fake plugin Super Socialat spreading in WordPress.
We will explain how to investigate unauthorized access to admin-ajax.php in WordPress
Here are five minimum security precautions to take when managing a WordPress site. In our experience, this will prevent more than 90% of hacking attempts.
Here is what to do if you are unable to download a WordPress plugin.
Vulnerability testing of WordPress plugins should be performed on a regular basis. We will explain the reasons for this.
Many of today’s malware spread infection to all folders beyond the domain folders in the server. In this article, we will discuss the infection of initial subdomain folders on unused servers, which is often overlooked.
There is a type of WordPress malware that registers fraudulent e-commerce site pages in Google search results without permission. We will explain whether (and when) such malicious search results disappear after the malware is removed.
We are currently unable to update the vulnerability database of our malware scan plug-ins due to the fact that NIST has stopped updating the database.
