Yearly Archives: 2014
SoakSoak Malware affects 100,000+ WordPress sites
Sucuri recently reported that hundreds of thousands of WordPress sites have been infected with a new strain of malware, which injects malicious JavaScript into every page of affected sites. According to their analysis, the “SoakSoak” malware uses a known vulnerability in … Continue reading
Serious Vulnerability in bash
A serious vulnerability has been found in bash, one of the core tools found on almost every Unix, Linux, and Mac OS X system. The vulnerability affects most versions up to and including 4.3, except certain patched versions like 3.2.52(1). You should assume … Continue reading
Vulnerability In The Slider Revolution Plugin
Sucuri has discovered a very serious vulnerability in the ‘Slider Revolution’ plugin. All versions below 4.2 are exploitable. As the Sucuri blog post points out, this is serious. This vulnerability can allow an attacker to read any file on the … Continue reading
How VaultPress Works
We’ve recently updated the way VaultPress stores your backup data, to make it more space-efficient and to allow for faster restore times. Now seems like a great time to describe how VaultPress works. Replicated, but not duplicated Everything that VaultPress … Continue reading
Custom Contact Forms Plugin Vulnerability
The web security team at Sucuri recently discovered a vulnerability in the Custom Contact Forms plugin. If the Custom Contact Forms plugin is installed on your self-hosted WordPress site, your site’s security may be at risk, and you should upgrade to the latest version … Continue reading
VaultPress Blog 