Secure Your Traffic on Public WiFi
Often when I give talks on website security one of the various discussion points is, and rightfully so, around your individual posture when interacting on the web. This often means being aware of things like transferring your data insecurely over the web. This insecure act is often achieved through the use public WifI access points…
Read MoreWordCamp Minneapolis 2014: Commercial WordPress Products
Recently I spoke at WordCamp Minneapolis 2014 on The Basics Of WordPress Security. At the event, I pulled double duty and also participated in a panel discussion on Commercial WordPress Products moderated by Kiko Doran with: Reid Peifer of Modern Tribe and Events Calendar Pro Marc Benzakein of ServerPress and Desktop Server Carl Hancock of…
Read MoreWordCamp Minneapolis 2014: The Basics Of WordPress Security
Over the years, I have seen and experienced an amazing amount of security threats, vulnerabilities, malware attacks, and other problems website owners face. Recently I had the opportunity to speak at WordCamp Minneapolis 2014 on The Basics of WordPress Security, specifically targeted for the website owner or end user. In this presentation, I share insights…
Read MoreWordCamp Las Vegas 2013: Real WordPress Security, Kill The Noise!
This month I joined my business partner Dre Armeda at WordCamp Las Vegas 2013 to speak about web security. Our presentation, titled Real WordPress Security, Kill The Noise! cut through the false sense of security many website owners enjoy to address the real security issues, threats, and vulnerabilities facing WordPress websites and their owners. But…
Read MoreWordPress Security: Learning From Hacks
This evening I will be giving a presentation at WordSesh at midnight PST (0800 UTC). This goal of this presentation is to learn from hacks as the name implies. It’s fairly straight forward to talk about hardening and malware, it’s something different all together to understand the attackers. That’s what this presentation attempts to do…
Read MoreForensics: Analyzing a WordPress Attack / Hack
Recently one of our honeypots was it by an attacker and in the process we were able to gather a bunch of good intelligence on the actions taken by the attacker. I write and detail the forensics of the attack in my latest post, for Sucuri: Case Study: Analyzing a WordPress Attack – Dissecting the…
Read More