This section describes the defacing of a WordPress site by adding an unauthorized user.
Tag: WordPress security Page 4/13
A case of a fake WordPress vulnerability patch being distributed has been uncovered. This fake security patch is malware, and there are currently reported cases of emails to WordPress administrators containing links to this malware.
More than 90% of WordPress malware has obfuscated PHP programs. This article describes the obfuscation process.
This section describes phishing that displays a fake Google login screen on a WordPress site.
It is dangerous to run a WordPress site and think that it will not be targeted because of low traffic. We will explain why low traffic does not necessarily mean that your site will not be hacked.
A vulnerability in tagDiv Composer, a plugin included with the WordPress Newspaper theme, has been discovered that allows the database to be rewritten.
We have been consulted about a new type of malware that hooks the search results of site searches in WordPress to search engines, and here is a case study of it.
We will introduce the strongest file write permissions (permissions) to prevent malware infection in cases such as repeated malware infections in WordPress.
This section explains how site operators can deal with a red screen on a WordPress site that says “This site may cause damage to your computer.
We will explain how to increase the security of the WordPress login screen in order of importance.
Recently, Chinese malware (backdoor) has been spreading through WordPress. We will explain about this malware.
Is it possible for malware to delete folders and files on a WordPress site? We would like to explain this.
Recently there has been an increase in WordPress malware that displays a fake browser update page. We will explain this malware.
This section describes malware files including index.html.bak.bak that infects index.php.
This section explains the causes and countermeasures for images not displaying, menus (animated child menus) not displaying, and layout collapsing due to style sheet loading failure after SSL conversion.
Here are some characteristics of malware files that can infect WordPress. If such a file is found on the server, it is most likely malware.
We are pleased to announce the release of our new free service “Online Malware Scanner” on WordPress Doctor.
We will explain about Japanese SEO Spam, which is a malware that embeds fake Japanese product sites in WordPress.