Blog
WordPress Blog
- People of WordPress: Stefano Cassone May 31, 2023The People of WordPress feature series goes to Italy to interview web designer, photographer and translator Stefano Cassone.Abha Thakor
- Celebrating 20 Years of WordPress May 27, 2023May 27, 2023, marks exactly 20 years since Matt Mullenweg and Mike Little forked b2/cafelog to create WordPress Version 0.70. Quite a bit has taken place in the past 20 years, and imagine how much more we can accomplish together in the next 20!Josepha
- WP Briefing: Episode 56: What to Know About WordPress Playground May 22, 2023Join guest host Rich Tabor and WordPress Playground innovator Adam Zielinski as they discuss the capabilities and promise of WP Playground in episode 56 of the WordPress Briefing. Stay tuned for your small list of big things coming up in the next two weeks.Nicholas Garofalo
- WordPress 6.2.2 Security Release May 20, 2023WordPress 6.2.2 is now available!Jonathan Desrosiers
- WordPress 6.2.1 Maintenance & Security Release May 16, 2023WordPress 6.2.1 is now available! This minor release features 20 bug fixes in Core and 10 bug fixes for the block editor. You can review a summary of the maintenance updates in this release by reading the Release Candidate announcement. This release also features several security fixes. Because this is a security release, it is […]Jb Audras
- WP Briefing: Episode 55: Happy Anniversary, WordPress! May 8, 2023Join WordPress Executive Director Josepha Haden Chomphosy in the 55th episode of the WordPress Briefing as she looks back at the 20 years of WordPress and how the open source community made WordPress what it is today.Brett McSherry
- 2022 Annual Survey Results & Next Steps May 4, 2023Each year, members of the WordPress community (users, site builders, extenders, and contributors) provide valuable feedback through an annual survey. For 2022, the survey received a comprehensive update, the first in six years. The total number of questions was reduced to 29 from nearly 100, socio-economic questions were mostly removed, and the Likert scale was […]Josepha
- The Month in WordPress – April 2023 May 4, 2023With preparations for the next major releases already underway, the community is gearing up to celebrate WordPress’ 20th anniversary, which is just around the corner. This month has also seen some major highlights, such as WordPress 6.2’s performance wins and the launch of WP Translation Playground. Read on to find out what’s new. Forthcoming WordPress […]Reyes Martínez
- People of WordPress: Monika Rao April 30, 2023People of WordPress features Monika Rao, a product and quality assurance manager in India.Abha Thakor
- WP Briefing: Episode 54: A Bill of Rights for the Open Web April 24, 2023Join WordPress Executive Director Josepha Haden Chomphosy in the 54th episode of the WordPress Briefing as she explores the concept of the four freedoms of open source and likens it to today's Bill of Rights for the open web.Chloe Bringmann
Sucuri Blog
- WordPress Vulnerability & Patch Roundup May 2023 May 29, 2023Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes of website compromises. To help educate website owners on emerging threats to their environments, we’ve compiled a list of important security updates and vulnerability patches for the WordPress ecosystem this […]Cesar Anjos
- How to Secure Your Online Store: A Ecommerce Security Primer May 25, 2023Welcome to another installment in helping website owners secure their digital assets, this time with a focus on the world of ecommerce. If you’re an ecommerce website owner, you’re likely aware that online stores face a unique set of challenges when it comes to security. Your success hinges on the trust customers place in your […]Victor Santoyo
- What Is a Keylogger? May 23, 2023Welcome to the world of keyloggers, where every keystroke you make may be watched, recorded, and potentially used against you! Now that we’ve got your attention, let’s dive into the somewhat unsettling realm of these sneaky little digital spies. In this blog post, we’ll uncover the mysteries behind keyloggers — what they are, how they […]Rianna MacLeod
- Vulnerability in Essential Addons for Elementor Leads to Mass Infection May 18, 2023On May 11th, 2023, the very popular WordPress plugin Essential Addons for Elementor released a patch for a critical privilege escalation vulnerability, initially discovered by PatchStack. The technical details of this vulnerability can be found on their recent blog post. Over one million websites use this plugin and the fallout from this has been absolutely […]Ben Martin
- WordPress 6.2.1 Security & Maintenance Release May 17, 2023On May 16, 2023, the WordPress core team released a crucial update — WordPress 6.2.1. This latest security and maintenance release addresses a number of bug fixes and vulnerability patches, including an unauthenticated Directory Traversal vulnerability, unauthenticated Cross-Site Scripting vulnerability, and several other lower-severity vulnerabilities. To mitigate risk, we highly recommend verifying that your WordPress […]Cesar Anjos
- Websites Defaced with Belarusian Bottled Water Company Content May 16, 2023It’s not often that we get the opportunity to write about website defacements on this blog. Defacements — where a website homepage is replaced with a hacker logo or some sort of political or religious message — are usually fairly run-of-the-mill and not particularly interesting. However, we’ve recently observed a rash of website defacements that […]Ben Martin
- Troubleshooting ERR_SSL_PROTOCOL_ERROR: How to Fix this Pesky Error in 6 Steps May 11, 2023As a website owner (and frequent website visitor), you might have encountered the notorious ERR_SSL_PROTOCOL_ERROR at least once. Continue reading Troubleshooting ERR_SSL_PROTOCOL_ERROR: How to Fix this Pesky Error in 6 Steps at .Marc Kranat
- Xjquery Wave of WordPress SocGholish Injections May 9, 2023In November, 2022, my colleague Ben Martin described how hackers were using zipped files and encrypted WordPress options stored in the database to inject SocGholish scripts into compromised WordPress sites. A bit later, we documented minor changes in the way this malware worked. By the end of March, 2023, we started noticing a new wave […]Denis Sinegubko
- What is XML-RPC? Security Risks & How to Disable May 4, 2023XML-RPC is a protocol designed for WordPress to standardize communication between different systems, allowing external applications (such as other blogging platforms and desktop clients) to interact with WordPress. This feature has been a part of WordPress since its early days, enabling seamless integration with the rest of the online world. However, the xmlrpc.php file, which […]Rianna MacLeod
- What is Steganography? (Or, How Hackers Hide Malware On Websites) May 2, 2023As a child, I loved sending secret messages to my friends using invisible ink. A quick squeeze of lemon juice was all I needed to jot down my secret message. When combined with a simple heat source (I used the heat of the wood stove), the contents of my top secret note were revealed in […]Rianna MacLeod