Latest CMS publications

How open source could save us from ad-served hacking

Since the inclusion of ads from major ad-serving networks such as DoubleClick and AdTech represents one of the most promising points of vulnerability for any website which needs to commercialise its output, it has always perplexed me that there seems to be no prospect of a solution for what is, as far as I can… Read More

WordPress attackers using hundreds of passwords in a single login attempt via XML-RPC

Online security company Sucuri have posted a recent and rising cluster of brute force amplification security attacks against sites which use the WordPress content management system – 58.7% of all CMS-based websites, and 24% of all websites of any kind. BFA attacks put a new spin on traditional brute force attacks by wrapping multiple login… Read More