A critical SQL injection vulnerability was discovered in WooCommerce, the most popular e-Commerce plugin used by over 5 million WordPress sites. The WordPress.org team pushed a forced security update ensuring that over 90 versions of WooCommerc

PrintNightmare 0Day Exploit Accidentally Leaked Online

Jul 2nd, 2021 15m 14s

Security researchers accidentally leaked zero-day exploit code for a new Windows bug, now called PrintNightmare, while easily exploitable vulnerabilities in the ProfilePress plugin, previously called WP User Avatar, were patched quickly. An unp

Over 30 Million Dell Devices at Risk for Remote BIOS Attacks

Jun 25th, 2021 15m 46s

Over 30 million Dell devices are at risk for remote BIOS attacks due to four separate security bugs, which can have far reaching effects for enterprise organizations heavily invested in Dell devices. VMware Carbon Black App Control has been upd

Largest Password Dump in History Fuels Credential Stuffing Extravaganza

Jun 18th, 2021 21m 56s

Sites running Jetpack are being infected via compromised WordPress.com credentials. The largest password dump ever with 8.4 billion passwords is used in credential stuffing attacks. Wordfence Threat Intelligence discloses new plugin vulnerabili

Wordfence is Now a CVE Numbering Authority (CNA)

Jun 11th, 2021 20m 18s

Wordfence is now a CVE Numbering Authority, or a CNA. As a CNA, Wordfence can now assign CVE IDs for new vulnerabilities in WordPress Core, WordPress Plugins and WordPress Themes. An outage at Fastly takes down major websites including Reddit,

Jetpack Autoupdate Security Patch Bypasses Local Settings

Jun 4th, 2021 24m 14s

A security fix for an information leak vulnerability was pushed out to WordPress sites using Jetpack that bypassed local settings preventing autoupdates. A ransomware attack on JBS that shut down meat processing operations in the United States

Critical VMWare Vulnerability Threatens Data Centers

May 28th, 2021 16m 32s

A Critical Vulnerability in VMWare's vCenter Server threatens some of the largest data centers in the world. An actively exploited 0-day in macOS was used to take screen shots of infected computers. CodeCov claims another victim as Japanese e-C

Four Android Vulnerabilities Under Active Attack

May 21st, 2021 28m 15s

Four memory corruption vulnerabilities are being actively exploited on Android devices and nearly 2 dozen popular Android apps exposed over 100 Million users’ sensitive information in cloud databases. Over 600,000 sites using WP Statistics requ

Cyber Attack on Colonial Pipeline Affects Fuel Availability in 17 States

May 14th, 2021 19m 55s

A ransomware attack on Colonial Pipeline affected fuel availability in 17 southeastern US states, and Bloomberg reported that Colonial Pipeline paid $5 million to DarkSide, a Russia-based ransomware service provider. The Biden Administration is

Packagist Patch Shows how Supply Chain Threats Could Impact WordPress

May 7th, 2021 24m 58s

A vulnerability discovered in Packagist, which is used by Composer to manage PHP package requests, could have allowed attackers to cause Composer to download the wrong source code, potentially affecting all WordPress sites. Packagist reports th

Update Your Mac: Gatekeeper Bypass Vulnerability Exploited in the Wild

Apr 30th, 2021 17m 41s

Apple patches a gatekeeper bypass vulnerability that has been exploited in the wild on MacOS. Though this vulnerability requires some social engineering to exploit, it is believed to be actively exploited since January 9, 2021. Some Digital Oce

Trifecta of Compromises Affect Enterprise Systems

Apr 23rd, 2021 23m 28s

Attacks on unpatched SolarWinds systems continue. We're now learning of a supply chain attack that started in late January 2021 affecting 29,000 customers of Codecov, as well as a zero-day under active attack affecting customers of PulseSecure

An Unprecedented FBI Operation Removes Webshells from Infected Exchange Servers

Apr 16th, 2021 21m 8s

An FBI initiative began remotely removing webshells from infected Microsoft Exchange servers. WordPress 5.7.1 was released with a few security patches. Over 15 Elementor add on plugins were found to have vulnerabilities similar to those found i

Wix Takes Aim at WordPress with New Ad Campaign

Apr 9th, 2021 18m 30s

A new Wix ad campaign targets WordPress but ends up being tone deaf in both content and strategy. New details emerge about the PHP compromise, but the full story remains unclear. Facebook user data from 2019 ends up on the dark web, and Have I

PHP Git Repository Compromised

Apr 2nd, 2021 14m 4s

The self-hosted Git repository for PHP was compromised, with attackers adding a backdoor to a development version of PHP 8.1. The intrusion was detected by the PHP community quickly, and no production environments were affected. Ubiquiti experi

Active Exploitation Continues on Unpatched Thrive Themes

Mar 26th, 2021 21m 23s

Attackers continue to exploit recently patched vulnerabilities in Thrive Themes, though not all of them are successful. Two vulnerabilities are patched in the Facebook for WordPress plugin installed on over half a million sites. Google Chrome v

This Attack Will Make You Want to Stop Using SMS 2FA

Mar 19th, 2021 17m 59s

An attack shows how a SMS enablement service was used to bypass SMS 2FA for $16. We discuss the recently patched vulnerabilities in Elementor affecting over 7 million WordPress sites and how easily these cross-site scripting vulnerabilities can

Hack Exposes 150,000 Security Cameras at Tesla, Cloudflare and Others

Mar 12th, 2021 17m 36s

A data breach exposes 150,000 security cameras used by organizations around the world, including Tesla and Cloudflare. State-sponsored hacking groups exploit Microsoft Exchange vulnerabilities. A fire in a French data center belonging to hostin

Two Plugin Vulnerabilities Target File Upload Capabilities

Mar 5th, 2021 15m 15s

The Wordfence Threat intelligence team finds vulnerabilities in two plugins, the User Profile Picture plugin and the WooCommerce Upload Files plugin. WordPress 5.7 is set to release on Tuesday, March 9 with numerous enhancements for the block e

Episode 106: Admin Password Resets, Blockchain Botnets and a Central Management RCE

Feb 26th, 2021 21m 47s

WordPress 5.7 is due to be released on March 9, and it will allow administrators to send password reset emails to users. A botnet is abusing the Bitcoin blockchain for command and control, while VMWare fixes a critical remote code execution bug

The Hottest Trend in WordPress

Feb 19th, 2021 18m 5s

An analysis of WordPress-related search trends found that interest in WooCommerce related results dominated during 2020. We discuss recent vulnerabilities discovered by our threat intelligence team in Ninja Forms, affecting over 1 million sites

Cryptography Demystified

Feb 12th, 2021 47m 19s

This week, the Wordfence team discusses cryptography in-depth, including the basics, a brief history, hashing, and the Crypto Wars. We also go over current news, including 2 new findings by the Wordfence Threat Intelligence team, a new mileston

Wordfence Innovates with Machine Learning and Security for Schools

Feb 5th, 2021 15m 35s

Wordfence opens the K-12 site audit and site cleaning service for public schools worldwide. Machine learning is now a big part of our malware identification process, which will speed new malware signatures to deployment for WordPress sites prot

Disruption Presents Opportunity

Jan 29th, 2021 1h 4m

After a disruptive year in 2020, there are new challenges in 2021, but also immense opportunities in numerous fields. In a deep and wide-ranging conversation, Mark Maunder and Kathy Zant discuss artificial intelligence, whether or not we're liv

Supporting Remote Students with Free Site Audits & Cleanings

Jan 22nd, 2021 17m 11s

Wordfence announced a new program offering free site cleaning and site audits to public schools in the United States. We talk about why we're offering this program and how to help schools take advantage of it. We also talk about the growing pre