Monthly Archives: November 2020

Episode 90: WPBakery Plugin Vulnerability Exposes Over 4 Million Sites

A vulnerability discovered by the Wordfence Threat Intelligence team in the WPBakery plugin exposes over 4 million sites. High severity vulnerabilities were discovered in the Post Grid and Team Showcase plugins. The online avatar service Gravatar, has been exposed to a user enumeration technique, which could be abused to collect data on its users’ profiles,

2020-11-06T14:02:00+00:00November 6th, 2020|Security|

Simple Site Speed Improvements for Local Businesses

Many small local businesseses have a hard time optimizing their site for speed. Why is that? Well, site speed optimizations tend to require web development skills which most small business owners don’t have, and developers can be quite expensive. What can you do if you don’t have the skills or budget, but still need to

2020-11-06T14:02:00+00:00November 6th, 2020|SEO|

Top Local SEO Blogs 2020

Getting local SEO news and information from the right sources can be what propels agencies and local businesses to the next level. And, unfortunately, the phenomenon of fake news has left no stone unturned — yes, even in the local SEO world misinformation can be rife. That’s why we make it our priority to collate

2020-11-06T14:02:00+00:00November 6th, 2020|SEO|

Emergency WP 5.5.3 Release

The WordPress core team has released an emergency release of WordPress 5.5.3, just one day after the release of version 5.5.2. This emergency release was done to remedy an issue introduced in WordPress 5.5.2 making it impossible to install WordPress on a brand new website without a database connection configured. In preparing for this emergency

2020-11-06T14:01:59+00:00November 6th, 2020|Security|

The Month in WordPress: October 2020

October 2020 was a notable month for WordPress lovers, thanks to the release of several products and updates. Read on to keep up with all the latest news! The 2020 WordPress Annual Survey is out The team published the 2020 WordPress Annual survey —  to help those who build WordPress to understand more about our

2020-11-06T14:01:59+00:00November 6th, 2020|Wordpress World|

Trump Campaign Site Hacked – What We Know & Lessons Learned

On October 27, 2020 at approximately 4:50pm Mountain Time, Donald Trump’s campaign website, www.donaldjtrump.com, was defaced. The attackers left a message claiming they had compromising information on President Trump. The defacement page contained two Monero cryptocurrency wallet IDs encouraging visitors to “vote” by sending cryptocurrency to the wallets, indicating that if the first wallet received

2020-11-06T14:01:59+00:00November 6th, 2020|Security|

Object Injection Vulnerability in Welcart e-Commerce Plugin

On October 6, 2020, our Threat Intelligence team discovered a High-Severity Object Injection vulnerability in Welcart e-Commerce, a WordPress plugin with over 20,000 installations that claims top market share in Japan. After we finished our investigation, we contacted the plugin’s publisher, Collne Inc. on October 9, 2020. Full disclosure was sent on October 12, 2020,

2020-11-06T14:01:58+00:00November 6th, 2020|Security|