WordPress Security: How Useful Are Security Plugins Really?

More than 38 percent of all websites now run on WordPress. This makes our favourite CMS a popular target for hackers and malware. But there is no need to panic! Because WordPress security is not witchcraft. In addition to practical security tips, today we have the three best WordPress security plug-ins and show you when you really need them. Do I still need a security plugin at allplugin? ... read more

Cookies as a Threat: Cross-Site Request Forgery

CSRF, this abbreviation appears again and again in the security and maintenance updates of the WordPress core. The method behind it is now old hat and exploits the abundant cookies of an internet user. Fortunately, however, you can protect yourself from cross-site request forgery quite easily. All you need is a little time and ... read more

Hiding WP-Admin: Popular, Complicated and Not Very Effective

Almost everyone knows how to reach the login barrier to the admin area on WordPress by default. Since more than 34 percent of all websites run on WordPress, it is easy for hackers to find and attack the login areas of these sites. This is exactly why corresponding hacks, such as brute force attacks, are among the most common attacks ever on WordPress sites . One ... read more

SQL Injections: Attacking the Heart of Your Site

In addition to brute force attacks, WordPress SQL injections repeatedly appear on the list of the greatest threats to WordPress sites . These are relatively easy manipulations of the database of your pages. Hackers can get hold of sensitive data or set up their own admin accounts and manipulate your site at will. We show how ... read more

XSS Attacks: How to Protect Yourself, Your Customers and Your Business

XSS attacks are particularly sneaky. And they are particularly popular with hackers. We show how you can protect yourself against hijacking your site- as a website operator and as a user. The security provider Wordfence analysed 1599 WordPress plug-ins over a period of 14 months, and the most frequent vulnerabilities of all were so-called XSS vulnerabilities. Almost 47 percent of the vulnerabilities found had to do with cross-site scripting... read more

Cross Site Scripting y- How Hackers Capture Your Site

XSS, SQL injection, XMLrpc - when a WordPress security update is released, the update reports contain mostly cryptic acronyms. Even if it is clear that these updates are necessary and the plus in security is very pleasing, it is important to understand what is behind these security vulnerabilities. Because only if you understand which gaps the updates ... read more

This Is How WordPress Sites Are Attacked Almost a Billion Times a Month

In May 2017 alone, WordPress sites was bombarded almost one billion times with so-called brute force attacks. This makes automated attacks on the login area by far the greatest danger for WordPress projects. Fortunately, you can protect yourself quickly and effectively against the login flood. Because brute force attacks are easy to fend off. There are intruders who plan ... read more

WordPress Security: Even Your Site Is Interesting for Hackers

28.4 percent of the largest websites worldwide run on WordPress. This high distribution makes WP sites a popular target for hackers. Especially operators of small sites often think they are safe, because who would hack a blog with a small reach or without sensitive data? Today I will show you why this is a dangerous fallacy when it comes to ... read more

WordPress: Its greatest strength is also its greatest weakness

How secure is WordPress? Not particularly, because it comes with a number of serious vulnerabilities. And because more than 28 percent of the internet currently runs on WordPress, it is a popular target for attacks. The good news is that the main vulnerabilities are very easy to eradicate. The beauty of WordPress is that really anyone can use it. Actually ... read more