1.3 Million WordPress Websites Targeted by Attackers Looking for Old Vulnerabilities

[ad_1]

A vast campaign targeting WordPress-based websites was identified by the Wordfence Firewall as it targeted 1.3 million pages, trying to leverage known plugins and theme vulnerabilities.

WordPress is just one of the platforms used to create and deploy websites and, just like its competitors, it’s always subject to attacks. Since it’s a complex ecosystem, with numerous plugins and themes for millions of projects, the area of attack is considerable.

As not all developers fix security problems identified in their components and not all webmasters actually upgrade the components to their…

[ad_2]
More Info

Build Versatile Layouts with the GenerateBlocks WordPress Plugin – WordPress Tavern

[ad_1]

Over the past few weeks, I have had the GenerateBlocks plugin sitting in my test environment. I have built a few layouts with it, tinkering with the plugin between other projects. The one thing I kept thinking was that it had huge potential. Aside from a couple of issues, I began enjoying the plugin more and more as I played around with its options.

GenerateBlocks was created by Tom Usborne. It was built specifically to work along with his popular GeneratePress theme. However, the plugin claims to work with any WordPress theme.

GenerateBlocks is meant to be the block answer to…

[ad_2]
More Info

Hackers Target Millions of WordPress Websites in a Major Cyber Attack

[ad_1]

A massive number of WordPress accounts and websites were victimized in recent days as part of a horrific cyber attack with the purpose of obtaining credentials and other sensitive personal data.

The hackers who were involved in the attack were attempting to download a specific file named as wp-config.php from WordPress websites as they contain crucial information like database credentials, connection info, authentication unique keys, salts, and much more.

Hackers Target Millions of WordPress Websites in a Major Cyber Attack

They sought to exploit vulnerabilities in WordPress plugins and…

[ad_2]
More Info

Hackers Target Over A Million WordPress Sites To Steal Credentials

[ad_1]

Researchers caught a recent malicious campaign targeting more than a million WordPress websites. As discovered, the hackers targeted all these WordPress Sites to harvest database credentials.

Hackers Target WordPress Sites In A Campaign

Team Wordfence has recently disclosed an orchestrated campaign by hackers targeting numerous WordPress sites.

As revealed in their recent blog post, the team detected over 130 million attacks within three days at the end of May 2020. These attacks collectively targeted around 1.3 million WordPress sites aiming to download their configuration files.

Among…

[ad_2]
More Info

PageLayer WordPress Plugin Vulnerabilities Risked Over 200K Websites

[ad_1]

Continuing with the trail of vulnerable plugins, now joins PageLayer. Researchers found some serious vulnerabilities in PageLayer WordPress plugin that posed a threat to more than 200,000 websites.

PageLayer Plugin Vulnerabilities

Reportedly, team Wordfence has come up with another interesting finding regarding a WordPress plugin. This time, they found a couple of vulnerabilities in the PageLayer WordPress plugin that threatened thousands of websites. They have shared the details in a recent blog post.

Briefly, they found two different vulnerabilities in the plugin.

The first of these is…

[ad_2]
More Info

The 10 Best Free WordPress Themes of 2020

[ad_1]

A website visitor takes just milliseconds to form an opinion of your site. Then, they decide to stay, giving you the opportunity to convince and convert. Or they click that back button and say goodbye.

That crucial first impression is formed on the basis of visual input: your website design. No matter how amazing your copy is, the deciding factor is how you present it.

Fortunately, having professional-looking website design is easier than ever. A multitude of WordPress themes is available for any conceivable purpose and industry.

But the quality, price,…

[ad_2]
More Info

The 10 Best Free WordPress Templates For Your Site in 2021

[ad_1]

A website visitor takes just milliseconds to form an opinion of your site. Then, they decide to stay, giving you the opportunity to convince and convert. Or they click that back button and say goodbye.

That crucial first impression is formed on the basis of visual input: your website design. No matter how amazing your copy is, the deciding factor is how you present it.

Fortunately, having professional-looking website design is easier than ever. A multitude of WordPress themes is available for any conceivable purpose and industry, from eCommerce to…

[ad_2]
More Info

Hackers Target 1.3 Mn WordPress Sites Steal Database Logins

[ad_1]

Cybercriminals Tried to Access Database Logins of 1.3 Mn WordPress Sites

Cybercriminals targeted around 1.3 million WordPress websites in a single day to steal database login credentials. It is found that hackers tried to steal config files by exploiting known XSS vulnerabilities in WordPress plugins and themes, according to a security alert issued by cybersecurity firm Wordfence.

The researchers stated that attackers tried to download the wp-config.php WordPress configuration file which contains connection details, authentication unique keys, and salts along with database credentials. In case attackers successfully exploited any vulnerable…

[ad_2]
More Info

Attackers tried to grab WordPress configuration files from over a million sites

[ad_1]

A threat actor that attempted to insert a backdoor into nearly a million WordPress-based sites in early May (and continued to try throughout the month), tried to grab WordPress configuration files of 1.3 million sites at the end on the same month.

WordPress grab configuration files

In both cases, the threat actor tried to exploit old vulnerabilities in outdated WordPress plugins and themes.

The latest attacks

“The previously reported XSS campaigns sent attacks from over 20,000 different IP addresses. The new campaign is using the same IP addresses, which accounted for the majority of the attacks and sites…

[ad_2]
More Info

Blockify the WordPress Dashboard with the Mission Ctrl Plugin – WordPress Tavern

[ad_1]

Nick Hamze makes it no secret that he loves the WordPress block system. He has spearheaded several unique blocks on the fun side of things as well as made more practical blocks through his Sorta Brilliant brand. It is his website for funding ideas for the block editor. For his most recent project, he has taken blocks outside of the post-editing screen, and this project is, well, sorta brilliant too.

Mission Ctrl is a WordPress plugin that blockifies the WordPress dashboard screen. The plugin allows users, developers, agencies, or even hosts set up the dashboard with custom widgets…

[ad_2]
More Info