Around mid-April news of attacks on WordPress based websites was spreading fast. Described as brute-force attacks, these botnets are intent on gaining access to websites by repeatedly hammering away at the administrative login. Some sources reported the April 2013 attack as being the worst ever.
The botnet’s job is to attack your WordPress login in an attempt to get the right combination of username and password that gets them logged in as the website administrator. In case you’re not quite grasping the seriousness of this, it means if they gain access they are LOGGED IN AS […]
Tonight I learned about a recent security breach involving WordPress sites that use the super-popular TimThumb script which resizes images on they fly — such as automatically creating your thumbnails for example. You need to know and understand that this is not something your hosting company or your designer is responsible for. TimThumb is in use by probably hundreds of thousands of WordPress sites and is automatically included in many WordPress themes but most commonly in the premium (paid) themes.
WPMU.org reports: “Timthumb is a very, very popular script and so it is […]
The past couple of months has been more than unusually web-work-busy for me. I launched several new sites and still have a number of projects in my “to be completed” pile. I’ve had so much work on my desk — about the time I think I see some light at the other end — three or four more projects march through the door, so many people pulling me in different directions, had to get my taxes ready for my accountant (when you don’t keep up with the paperwork all year long this makes for some heavy duty work […]