Author Archives: Mark George

iThemes Security: Critical Security Release

iThemes have released an important security fix for their iThemes Security Plugin. This release fixes an XSS issue, which allowed potentially dangerous JavaScript to be executed while viewing the iThemes Security 404 error logs. iThemes have backported the security fix to past versions, … Continue reading

Posted in General | Leave a comment

Vulnerability in WP-Slimstat Plugin

A vulnerability has been found by Sucuri in the WP-Slimstat plugin, which affects all versions up to 3.9.5. The vulnerability may allow attackers to inject SQL commands into your database, allowing them to make arbitrary changes. If you use the WP-Slimstat plugin, we … Continue reading

Posted in General | Leave a comment

FancyBox for WordPress Vulnerability

A vulnerability has been discovered in most versions of the Fancybox-for-WordPress plugin. This vulnerability makes it possible for attackers to inject malicious code into affected sites. If you’re using this plugin, you should immediate upgrade to the latest version. Our security scanner … Continue reading

Posted in General | Leave a comment

SoakSoak Malware affects 100,000+ WordPress sites

Sucuri recently reported that hundreds of thousands of WordPress sites have been infected with a new strain of malware, which injects malicious JavaScript into every page of affected sites. According to their analysis, the “SoakSoak” malware uses a known vulnerability in … Continue reading

Posted in General | Leave a comment

How VaultPress Works

We’ve recently updated the way VaultPress stores your backup data, to make it more space-efficient and to allow for faster restore times. Now seems like a great time to describe how VaultPress works. Replicated, but not duplicated Everything that VaultPress … Continue reading

Posted in General | Leave a comment