Should we use WordPress

Posted by Gav on 9 March 2012 | 0 Comments

Tags:

WordPress is great at what its designed for (a blog) but it seems to be an insecure system. I have lots of enquiries to build WordPress websites and this is my attempt to convince people to consider an alternative secure CMS system.

To support this argument, he is some recent press related to WordPress.

As many as 100,000 WordPress blogs infected 700,000 Macs with malware

21rd April 2012 - BetaNews

If computer security is your thing -- it really should be everyone's -- and you own a Mac, Kaspersky's analysis of Flashfake malware, also called Flashback, is a must-read. Gasp, this is only part one. There's more to come from the security software developer.
Read original article

Flashback Spread via Hijacked WordPress Blogs

20th April 2012 - Security Watch

If you found Flashback on your Mac, chances are you were infected after visiting compromised WordPress Websites, according to the latest analysis from Kaspersky Lab.
Read original article

Flashback Trojan spread by Wordpress web sites

20th April 2012 - The Inquirer

COMPROMISED Wordpress web sites have been sending visitors to malware hosts that infect Mac OS X systems with the Flashback Trojan, security outfit Kaspersky Lab has reported.
Read original article

Hackers booby-trap WordPress site with botnet-weaving Trojan

23rd March 2012 - The Register

Malware-flingers are taking advantage of vulnerable WordPress sites as part of an attack ultimately designed to spread an information-stealing botnet agent.
Read original article

Compromised WordPress sites serving client-side exploits and malware

21st March 2012 - ZD Net

Security researchers from TrendMicro are reporting on mass compromise of WordPress sites, currently serving client-side exploits and malware to users who click on malicious links in the spamvertised emails connected with the campaign.
Read original article

Compromised WordPress sites Drive Users to Blackhole Exploit Kit

21st March 2012 - Trend Labs

We were alerted to reports of a mass compromise of WordPress sites that lead to CRIDEX infection. To lure users to these compromised sites, the cybercriminals behind this employed spammed messages purporting to come from known legitimate sources such Better Business Bureau and LinkedIn, just to name a few. These spam use social engineering tactics to entice unsuspecting users to click the link found in the email.
Read original article

Rogue Antivirus Campaign Tricks WordPress Users, Infects 30,000 Sites

8th March 2012 - Web Host Industry Review

(WEB HOST INDUSTRY REVIEW) — Research by security firm Websense has found that about 30,000 WordPress websites have been infected with malicious code that distributes rogue antivirus software, according to a blog post published on Monday.
Read original article

Security Firm: Injection Hit 200,000 Sites

8th March 2012 - The Hosting News

(The Hosting News) –WordPress represents one of the largest online blogging platforms, used by a variety of companies and entities for the purpose of maintaining their web presences. Not surprisingly, the platform itself has also long been a common target of those who seek to disrupt stability on the web – hackers.
Read original article

30K WordPress Blogs Attacked by Malware

8th March 2012 - Business 2 Community

Do you have a WordPress website? If so, the latest news regarding WordPress’s security should have you more than a little concerned. According to Slashdot, 30,000 WordPress blogs and websites were infected with a recent malware scam.
Read original article

Rogue AV Campaign Infects More Than 200,000 Web Pages

7th March 2012 - Dark Reading Protect The Business

Researchers at Websense have detected a widespread rogue antivirus campaign targeting more than 200,000 Web pages and close to 30,000 unique Web hosts.
Read original article

Rogue Antivirus Campaign Targets WordPress

8th March 2012 - Tech Week Europe

A new wave of mass-injections of a fake antivirus campaign that appears to be targeting sites hosted by popular blogging platform WordPress, according to Websense it has detected
Read original article

30,000 Wordpress Sites Infected to Redirect to Fake AV Sites

7th March 2012 - Maximum PC

Fake antivirus is by no means a recent phenomenon. In fact, it has been around for ages, with the first documented instance of fake antivirus reportedly dating back to 1989. Of course, it has become much more widespread over the past few years. But in case you needed reminding that rogue antivirus software continues to be a threat, security firm Websense has just the reminder for you.
Read original article

Fake AV attack targets Wordpress users

7th March 2012 - Network World

Security company Websense has detected a new wave of mass-injections of a well-known rogue antivirus campaign, targeting websites hosted by the WordPress content management system.
Read original article

New mass injection wave of WordPress websites

7th March 2012 - Help Net Security

Websense has detected a new wave of mass-injections of a well-known rogue antivirus campaign. The majority of targets are Web sites hosted by the WordPress content management system.
Read original article

Mass injection wave whacks WordPress webpages

7th March 2012 - IT PRO

Almost 30,000 websites have been hit by a mass injection attack, most of which are based on the WordPress content management system, Websense has found.
Read original article

30,000 WordPress Blogs Infected to Distribute Rogue Antivirus Software

7th March 2012 - PC World Business Centre

Almost 30,000 WordPress blogs have been infected in a new wave of attacks orchestrated by a cybercriminal gang whose primary goal is to distribute rogue antivirus software, researchers from security firm Websense said in a blog post on Monday.
Read original article

Compromised websites leading to banking malware

2nd March 2012 - Info Security

M86 Security is warning that recent spam campaigns are luring victims to compromised websites that redirect to malicious Phoenix-hosting sites, which in turn seek to infect the visitor with the Cridex trojan.
Read original article

Hackers Infect WordPress 3.2.1 Blogs to Distribute TDSS Rootkit

1st February 2012 - PC World Business Center

Hackers are compromising WordPress 3.2.1 blogs in order to infect their visitors with the notorious TDSS rootkit, according to researchers from Web security firm Websense.
Read original article

WordPress attacks try to infect users with dangerous rootkit

1st February 2012 - SC Magazine

he number of WordPress blogs that have been compromised to hurl malware onto the machines of unsuspecting users is gradually growing, security researchers said this week.
Read original article

Hackers Infect WordPress 3.2.1 Blogs to Distribute TDSS Rootkit

31st January 2012 - CSO

IDG News Service — Hackers are compromising WordPress 3.2.1 blogs in order to infect their visitors with the notorious TDSS rootkit, according to researchers from Web security firm Websense.
Read original article


Post your comment

Comments

No one has commented on this page yet.

RSS feed for comments on this page | RSS feed for all comments