Does your website run on WordPress?

WordPress is one of the most – if not the most – popular website package on the web. Both professional web designers and less professional web designers use it. One of the reasons it is so popular is that with a little work, anyone can alter the code or download a plug-in to customise WordPress for themselves.

These are also the reasons that make WordPress a prime target for threat actors. Hackers exploit any cyber security issues in the WordPress ecosystem as it is guaranteed to reach many thousands of potential victims. Here is the latest cyber security issue.

Hackers deploy crypto drainers on thousands of WordPress sites (bleepingcomputer.com)

Research shows nearly 2000 compromised WordPress sites are running this cyber security attack.

Your takeaway from this…

Ask yourself two questions. The first is “Do you know if your website is built on WordPress?” and the second is “Do you know what the patching and backup procedures are?”.

How much are you relying on your web designer to protect your reputation?

We have a document we use when we are carrying out IT and Cyber Security Audits for clients that we use in-house and with third parties to make sure our clients reduce the risk of using WordPress. The same questionnaire can easily be adapted for other similar services and products.

Do you have a similar audit in place?

Clive Catton MSc (Cyber Security) – by-line and other articles

wordpress and wordpress plugins