After great feedback from Ep#1, we’re continuing with our weekly ShieldNOTES series.
Although it’s been a quiet week, here are a few things to be aware of…
#1 – Google/Yahoo Email Might Cause You SPAM Trouble
They’ve started being super strict on what how they detect SPAM, so if you send critical emails from your WP sites you’ll want to sort it.
What do I need to do?
Make sure all domains are can send emails with clear, non-SPAM signals.
Can I ignore this?
If you don’t do the checks, you or your customers may not receive emails you’re expecting. Double-checking is good.
Editor Comment
We’ve been recommending PostmarkApp for years. They also have a free DMARC reporting service.
#2 – Vulnerability in WordPress File Manager Pro
What do I need to do?
400,000+ sites use the free version, so some of you will likely have Pro. Upgrade asap to patch this.
How will I know I’m okay?
You’re all set if you’re running v8.3.5+
Editor Comment
With ShieldPRO’s autoupdates for vulnerable plugins, you’re sites would be automatically protected within 24hrs.
#3 – Vulnerability in MasterStudy LMS Plugin
What do I need to do?
This has a critical severity of 9.3 (out of 10), so make sure to upgrade asap.
How will I know I’m okay?
If you’re running v3.2.6 you’re all set!
Editor Comment
With ShieldPRO’s autoupdates for vulnerable plugins, you’re sites would be automatically protected within 24hrs.
#4 – Understanding WP Filesystem (from our blog)
Why do I need this?
You don’t want to try to understand how WP manages its filesystem when you’re stressed after something goes wrong. Better to take time to broaden your WP understanding during calmer times.
What should I do?
If you have a spare few minutes, have a read of our blog from the link below.
It’s been a quiet week in WP security, which is a good thing! Let us know what you think, and suggestions on what you’d like us to cover.
Have a wonderful week!
Paul Goodchild
Shield Security for WordPress
