Buy Now

ShieldNOTES

ShieldNOTES
December 23, 2024 by Paul G.

Elementor & LiteSpeed At Risk (again!); & wp.org Services Paused;

It doesn't seem to take very long for either, or both, of Elementor or LiteSpeed to make an appearance on our ShieldNOTES emails. There are also 2 Elementor-related plugins with vulnerabilities, and the popular User Role Editor plugin faces exposes sites to a CSRF of severity 9.8/10.

Continue Reading →
ShieldNOTES
December 16, 2024 by Paul G.

A big week for vulnerabilities; REST API Security Tips; & ShieldPRO 20.1 Released

This is a big week for vulnerabilities. Several popular form plugins are hit by quite serious vulnerabilities, and there's a priviledge escalation risk with the MainWP client plugin. It's hard to imagine that there's anyone out there not affected by at least 1 vulnerability this week. I'd also like to draw your attention to our latest ShieldPRO release, v20.1.

Continue Reading →
ShieldNOTES
December 9, 2024 by Paul G.

ShieldNotes #44: Security Risks; & Sneak Peak into ShieldPRO’s 20.1 Release

There are a few security vulnerabilities that may need your attention, and check out what's coming in Shield 20.1.

Continue Reading →
ShieldNOTES
December 2, 2024 by Paul G.

ShieldNotes #43: Popular plugins are high risk, including CleanTalk’s Anti-Spam; & WordPress rolls out free ACF Pro Plugin;

Several high-traffic plugins, including CleanTalk’s anti-spam, are facing significant security risks. Meanwhile, WordPress introduces a new plugin with free ACF Pro features.

Continue Reading →
ShieldNOTES
November 25, 2024 by Paul G.

ShieldNotes #42: Top Plugins Targeted, Rank Math SEO Hits 3M Sites

This week’s security updates reveal flaws in popular plugins, including Rank Math SEO, impacting more than 3M sites. PeepSo is exiting the wp.org.

Continue Reading →
ShieldNOTES
November 18, 2024 by Paul G.

ShieldNotes #41: Popular Plugins Under Attack, High Risk to Millions of Sites; & Mask Your WP Site Effectively

Active exploitation of security vulnerabilities in popular plugins leaves millions of sites at high risk. We debunk the WP version masking myth with smarter hiding tips.

Continue Reading →
ShieldNOTES
November 11, 2024 by Paul G.

ShieldNotes #40: Top Security Risks in Plugins & Themes; & Proven Backup Strategies

Security flaws continue to affect plugins and themes this week, and we explore backup methods to keep your site & data safe from disaster.

Continue Reading →
ShieldNOTES
November 4, 2024 by Paul G.

ShieldNotes #39: LiteSpeed Cache recurring vulnerability, and others; & WPLockout Solutions

This week highlights security risks in popular plugins, focusing on a recurring high-severity LiteSpeed Cache vulnerability affecting millions, along with tips for fixing WordPress lockouts.

Continue Reading →
ShieldNOTES
October 28, 2024 by Paul G.

ShieldNotes #38: Many High-Risk Vulnerabilities For Popular Plugins

There are quite a few serious vulnerabilities highlighted this week, on many popular plugins.

Continue Reading →
ShieldNOTES
October 21, 2024 by Paul G.

ShieldNotes #37: Popular Plugins Under Attack, while Devs remove plugins from WP Repo

Several very popular plugins at-risk, with Jetpack impacting nearly 25M sites. And, after WP.org assumed ownership of ACF, several other plugin devs have decided to mitigate this risk by running their own plugin hosting.

Continue Reading →
Click to access the login or register cheese