Skip to content

Davey Winder

delivering award-winning technology journalism since 1991

  • home
  • about me
  • follow me on mastodon
  • privacy policy
  • Toggle search form
Tablet showing security over risk equals www equation

Is the wildly popular WordPress a conduit to compromise?

Posted on June 3, 2017June 3, 2017 By Davey Winder

SC Media UK asked security professionals, and a long established web developer, about WordPress being such a conduit to compromise…

The WordPress platform pretty much dominates the content management system (CMS) driven web development market. The latest figures suggest it has a 60 percent share.
Cyber-criminals looking to host malicious content are drawn to legitimate sites, especially those that have been established for a while. WordPress often provides the entry point, or more accurately vulnerable and unpatched plugins do.

There have, according to IBM X-Force, been 238 releases of WordPress since May 2003, many of which addressed security issues. Yet five percent of sites had not updated to the latest version despite the previous versions having vulnerabilities being exploited in the wild. Despite WordPress having an automatic core update facility by default, it often gets turned off by site developers worried it could impact upon custom plugins and designs.

Click here to read complete article

Analysis Tags:Analysis, compromise, Web, WordPress

Post navigation

Previous Post: Time for bosses to sit up and take notice of cybersecurity
Next Post: Quantum-powered random numbers could provide key to better cryptography

Related Articles

Microsoft Outlook Warning: Critical New Email Exploit Triggers Automatically—Update Now Analysis
Is Bitwarden Doing Enough To Prevent Password Theft? New Research Reveals Attack Vector Analysis
Twitter Just Weakened Account Security For Almost 368 Million Users Analysis
Is ChatGPT a security threat? I asked, the AI bot replied. Analysis
Wordcloud with Cyber Security at centre No, PayPal Hasn’t Been Hacked: Yet Almost 35,000 Accounts Were Breached Analysis
You Need To Fix Google Chrome’s Mojo, Here’s How & Why Analysis

Categories

Post Archive

Tags

0day Analysis Android Apple Apps breach bug bounty Business Chrome crime Cybercrime Data Protection Encryption Enterprise Google Government hack Hackers Hacking healthcare industry iOS IoT iPhone Malware Microsoft News NHS Opinion passwords Phishing Privacy ransomware Research Russia Samsung threat intelligence Threatscape Update Vulnerabilites vulnerabilities Vulnerability Windows Windows 10 zero-day

Copyright © 2023 Davey Winder .

×
Cookies
We serve cookies. If you think that's ok, just click "Accept all". You can also choose what kind of cookies you want by clicking "Settings". Read our cookie policy
Settings Refuse all Accept all
Cookies
Choose what kind of cookies to accept. Your choice will be saved for one year. Read our cookie policy
  • Necessary
    These cookies are not optional. They are needed for the website to function.
  • Statistics
    In order for us to improve the website's functionality and structure, based on how the website is used.
  • Experience
    In order for our website to perform as well as possible during your visit. If you refuse these cookies, some functionality will disappear from the website.
  • Marketing
    By sharing your interests and behavior as you visit our site, you increase the chance of seeing personalized content and offers.
Save Refuse all Accept all
GDPR Cookie Policy