What’s wrong with your pa$$w0rd?
The discussion on access control seems to be common place these days with the latest revelations news. Found this video on some research Lorrie Faith Cranor is doing on the subject very interesting and insightful.
Read MoreImportance of Updates in Website Security: WordPress, Joomla, Drupal and CMS’s
In my recent post talking to the dilemma that is WordPress Security, there seemed to be some confusion as to my position on updates. Allow me a moment to provide clarity on the subject, yes, updates are very important. My previous statements are specific to the importance level of updates, it was designed to foster…
Read MoreThe Dilemma that is WordPress Security
The past few weeks WordPress Security has come to the forefront of the discussion again, as it often does every few months. As is often the case, it’s highly emotional and generates a lot of discussion. Chris Lema shared a post, Our discussions around WordPress security should change, and that sparked some interesting conversations. He’s…
Read MoreWordCamp Chicago 2014: WordPress Security Is All About the Basics
Recently I had the opportunity to share my insights from the past five years working at Sucuri at WordCamp Chicago 2014 held at the University Center in downtown Chicago. My talk, WordPress Security: It’s All About the Basics, focused on experiences with end-user security issues and threats in the web security industry. With the goal…
Read MoreExplaining XSS and CSRF By Google
Came across this video earlier today and found it very informative — explaining the difference between XSS and CSRF (XSRF). I find that most people rarely understand or differentiate between the two so hopefully this video helps. It’s laid out in a very clear way.
Read MoreWordCamp Philly 2014: The Key to WordPress Security Is Awareness
This past weekend, I had the opportunity to speak about WordPress Security at WordCamp Philly 2014 as part of the Power User Track. It’s critical to understand that the key to website security is awareness — and that is exactly what we achieve in this talk. Getting down to the basics and sharing insight that…
Read More