WordPress and Joomla Security Hacks and How to Prevent


Recently we have seen number of websites being hacked by russian hacker sites redirecting the wordpress url to a russian page.  Finding out through our host, it has to do with WordPress and Joomla Installations.  They are recommending a few things.  #1 Keep your installation up to date.  Hackers have been exploiting security holes in out of date installations.  #2 Install a few hacker proof plugins to secure and lock down your site.  Please see the list below.  #3 Submit your site to websitedefender.com as that is a great resource for notifying you of holes in your security.   Wordpress Plugins to Secure your Site: Chap Secure Login: Whenever you try to login into your website, you can use this plugin to trasmit your password encrypted. The encryption process is done by the Chap protocol; this is particularly useful when you can’t use ssl or other kinds of secure protocols. By activating the ChapSecureLogin plugin, the only information transmitted unencrypted is the username; password is hided with a random number (nonce) gene… By Enrico Rossomando (redsend). WP Security Scan:  WP Security Scan checks your WordPress website/blog for security vulnerabilities and suggests corrective actions such as: Passwords File permissions Database security Version hiding WordPress admin protection/security Removes WP Generator META tag from core code Requirements WordPress version 3.0 and higher (tested with 3.2.1, 3.3) PHP5 (tested with PHP Interpreter >= 5.2.9) For more i… By WebsiteDefender. WP-DB-Backup:  WP-DB-Backup allows you easily to backup your core WordPress database tables. You may also backup other tables in the same database. By Austin Matzko. Bulletproof Security:  WordPress Website Security Protection: BulletProof Security protects your WordPress website against XSS, RFI, CRLF, CSRF, Base64, Code Injection and SQL Injection hacking attempts. One-click .htaccess WordPress security protection. Protects wp-config.php, bb-config.php, php.ini, php5.ini, install.php and readme.html with .htaccess security protection. One-click Website Maintenance Mode (HTTP 503).… By Edward Alexander.