WordPress 4.9.1 is now available. This is a security and maintenance release for all versions since WordPress 3.7. We strongly encourage you to update your sites immediately. Unless you have disabled automatic updates, or your hosting account doesn't have enough disk space, your site may have already been upgraded to WordPress 4.9.1. More info at ... Read More »
Yoast SEO fixed an unauthenticated cross site scripting vulnerability that affected versions 5.7.1 and older. Update immediately.
A reminder that WordPress 4.9 is now available. This Major release features customizer improvements, code error checking, and mor, as detailed at https://wordpress.org/news/2017/11/tipton/. Unless you have disabled automatic updates, or your hosting account doesn't have enough disk space, your site may have already been upgraded to WordPress ... Read More »
Duplicator, running on over 1 million active sites, has a stored cross site scripting vulnerability affecting versions 1.2.28 and older. We have automatically upgraded all applicable WordPress customer accounts.
A reminder that WordPress 4.8.2 is now available. This is a security and maintenance release for all previous versions of WordPress, fixing six security vulnerabilities, as detailed at https://wordpress.org/news/2017/09/wordpress-4-8-2-security-and-maintenance-release/. We strongly encourage you to update your sites immediately.Unless you have ... Read More »
We have been advised that the Display Widgets plugin includes backdoor hacking code. This has been automatically removed from all WordPress sites containing the plugin. For further info see: ... Read More »
The Petya Ransomware has gone global this morning, affecting critical systems globally. You don’t need to click on anything or take any action for to infect your computer as it can spread into your system through the network. Read the following from https://www.wordfence.com/blog/2017/06/petya-ransomware/ and take immediate steps to patch ... Read More »
A reminder that WordPress 4.7.5 is now available. This is a security and maintenance release for all previous versions of WordPress, fixing six security vulnerabilities, as detailed at https://wordpress.org/news/2017/05/wordpress-4-7-5/. We strongly encourage you to update your sites immediately. Unless you have disabled automatic updates, or ... Read More »
A massive global ransomware attack on machines running the Windows operating system is underway and spreading quickly. See the WordFence public service announcement and ensure that you are protected.
A reminder that WordPress 4.7.4 is now available. This is a maintenance release for all previous versions of WordPress (fixing 47 bugs from WordPress 4.7.4). We strongly encourage you to update your sites immediately.