• Home
  • Domains
  • Internet & Tech
  • Security & Privacy
  • Google & Search
  • Editorial Praise
  • Contact

Strategic Revenue - Domain and Internet News

Internet news authored by John Colascione

Register Domain Names

  • Isn’t Print Dead?
  • Killer Acquisition
  • New gTLD Death
  • Online Censorship
  • Gullible Domainers
  • You’re A Loser
You are here: Home / Security Issues / New Threat to WordPress Sites Designed to Bypass All Ordinary Security Measures

New Threat to WordPress Sites Designed to Bypass All Ordinary Security Measures

September 12, 2017 By John Colascione Leave a Comment

*** Here Is A List Of Some Of The Best Domain Name Resources Available ***






NEW YORK, NY – It seems like a new security threat is born each day; maybe that is because there is. For those who operate WordPress sites, including myself, there is a new threat to consider that is designed to bypass ordinary security measures; a simple back door, you have already left wide-open, by choice.

WordPress Plugins are great additions to any WordPress site as they create all sorts of easy plug-and-play options and make often complicated features simple to install; by allowing you to upload any plugin designed by others who have already created a certain feature. Users can then benefit, in mass numbers, from these developers. Some plugins are free and some really good ones require a fee to install, use and/or update.

These plugins can be event calendars, shopping carts and even certain security features such as WordFence, which has both free and paid options.

In a nutshell, plugins make adding certain features and functions to any WordPress site a breeze. I do not know of any WordPress site without at least a couple of plugins installed. They are probably one of the most powerful functions and add-ons to WordPress allowing you to add near anything to your site.

But what happens when a plugin is installed in your site, and hundreds of thousands of sites use this plugin, which has near limitless access to your site, and then that plugin is sold-off to a new developer? This new developer has instant access to each WordPress site that has the plugin installed.

This is what happened recently and it opens-up an entirely new can of worms when it comes to security of your WordPress site. It’s the equivalent of giving your car to a friend based on trust, and them handing it over to a stranger; there is no telling where your vehicle may wind up.  Who would have thought of this happening?

If you are interested in reading about it, a popular plugin called the Display Widget, with over 200,000 installs, changed ownership and the new authors added backdoor code to it on June 30th. This code allowed them to bypass site authentication and publish spam to thousands of websites. The spam was hidden from the site admin and any logged-in user.

Words of Wisdom: If you run a WordPress site, be ready for anything.

This is just another one of those risks you take when you operate a widely used software suite; vulnerabilities are a hot-commodity in the hacker-space, and once a vulnerability is found, it has the ability to affect a large number of people – quickly, until it is discovered, patched, or otherwise resolved.

Here are some additional worth-while suggestions while we’re at it:

  • Don’t install a plugin unless you really need it.
  • Delete and/or remove any plugins you no longer use.
  • Always immediately update any plugins that release updates.
John Colascione 2024
John Colascione

About The Author: John Colascione is Chief Executive Officer of Internet Marketing Services Inc. He specializes in Website Monetization, is a Google AdWords Certified Professional, authored a ‘how to’ book called ”Mastering Your Website‘, and is a key player in several Internet related businesses through his search engine strategy brand Searchen Networks®

Filed Under: Security Issues Tagged With: Authentication, Bypass, Designed, Developer, Developers, Event Calendars, Hacker, Hackers, Patch, Security, Security Vulnerabilities, Shopping Carts, Sites, Software Developer, Software Developers, Spam, Threat, Websites, WordFence, WordPress, WordPress Plugin, WordPress Plugins

*** Here Is A List Of Some Of The Best Domain Name Resources Available ***






Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Search This Site

by: John Colascione

John Colascione

Best Site for Things to Do While Visiting Florida
John Colascione is Chief Executive of Internet Marketing Services Inc. He specializes in Website Monetization, authored a book called Mastering Your Website, and is a key player in several Internet businesses through his brand SEARCHEN®

#Indiana.com

GEO domain name

Follow Me

John Colascione Twitter

The First Fiction Horror Story Based Entirely On An Internet Domain Name

The First Fiction Horror Story Based Entirely On An Internet Domain Name
A cyber thriller where the countdown to death is always ticking…

USED CARS ENTERPRISE

auto buyers market
Auto Buyers Market – Shop Used Cars by Participating Dealers at autobuyersmarket.com

In The News

  • DNJournal: New Book From Veteran Domainer
  • From Brandable to Exact-Match Geo Domain
  • InnovateLI: Two Deals, One Very Interesting Digital
  • Internet Commerce Association: John Colascione
  • NamesCon: Featured Attendee: John Colascione
  • Long Island Media Inc, SmartCEO, Future 50
  • Speakers, Name Summit, John Colascione
  • Speakers, Real Estate Summit, John Colascione
  • 24 Leading Domain Experts Analyze 2017

Popular Stories

Did DuckDuckGo Just Acquire Premium Domain “Duck.com” from Google?

New gTLD? Not So Fast; History Suggests New ‘Right of the Dots’ Could = Total Failure

Could Domain Investing Industry End with Legal Provision for Domain “Hoarding”

Websites and Domain Names to Become Insignificant within 20 Years or Less

Does the Domain Industry Suffer From Own Versions of Trumpted “Fake News” Stories?

Quotes to Follow

quote icon The domain name is equivalent to Gold. It is the only packaged item which is globally tax-free, portable, with value that is universal across different cultures. quote icon – Frank Schilling

quote icon Domains have and will continue to go up in value faster than any other commodity ever known to man. quote icon – Rick Schwartz

quote icon  Google knows you, your friends, your likes, what entertains you, where you are in the world at any given time. Google will soon predict your next action, your next thought, based on a collaboration of thoughts past. quote icon – John Colascione

Like These Headlines?

Enter your email address:

Delivered by FeedBurner

T.L.D. Brokerage

Domain Brokers

Bluehost & HostGator Expired Domains to be Auctioned on NameJet, SnapNames

WEST PALM BEACH, FL - In a notable development within the domain name aftermarket industry, NameJet has announced that expired domain names from two major hosting providers - Bluehost.com and … [Read More...]

Google’s Search Market Share Dips Below 90% for First Time in Decade

MOUNTAIN VIEW, CA - Google's global search engine market share fell below 90% in the final quarter of 2024, marking the first time since 2015 that it has dipped under this threshold. Regional … [Read More...]

Aflac Hit by Sophisticated Cyberattack: What Victims, Businesses Need to Know

COLUMBUS, GA - Aflac Incorporated, a leading supplemental insurance provider, disclosed that its U.S. systems suffered a cyberattack on June 12, 2025, potentially exposing sensitive customer data. The … [Read More...]

Domaining blog recommended by Domaining.com

Copyright © 2010-2025 StrategicRevenue.com - Property of Internet Marketing Services Inc.   FeedBurner: RSS
By using this site you agree to our Terms of Service and Privacy Policy. If you do not agree, please exit the service.