Latest Headlines

Latest Headlines

WordPress users: Cookies at a nearby Starbucks could be bad for you

Hackers can hijack a WordPress site through a public Wi-Fi connection because WordPress servers send the "wordpress_logged_in" cookie in plain text, instead of encrypting it.

Attackers target XML-RPC to trick 162,000 WordPress sites into DDoS attack

The technique makes use of XML-RPC, a protocol used by a range of WordPress and other blogging software to provide pingback, trackback and remote access on mobile devices to some users.

More than 162,000 WordPress sites used to launch large DDoS attack

More than 162,000 WordPress sites were used to launch a large distributed denial of service attack against a target, according to security firm Sucuri.

WordPress reportedly working on frontend editor

WordPress is working on writing and editing in place.

Spotlight: WordPress overhauls administrative interface with version 3.8

WordPress delivered its latest update this week.

Security holes in WordPress continue to be exploited

Vulnerabilities in WordPress continue, with the latest example being the website hacking of Canadian internet services company Storm, reports Chris Larsen, a security researcher at BlueCoat.

Spotlight: WordPress 3.7 is available

WordPress 3.7 is here.

Spotlight: WordPress buys file-sharing site Cloudup

Automattic bought startup Cloudup last week.  

Content management has come a long way, but not nearly far enough

Today's content management systems are a marked improvement over website production tools of the 90s, but that's probably little consolation to today's users struggling to make their CMSes work.

Hackers using Dropbox, Wordpress to distribute malware

State-sponsored hackers are making use of web services, such as Dropbox and Wordpress, as part of their attacks.