Table of contents

Blocking a WordPress XML-RPC attack with the Linux kernel firewall.

One of our customers faced a large attack against his WordPress blog xmlrpc.php script. When I connected to his server, the CPU load... »

NinTechNet changelog.

This is the global changelog for all our products and services. For more details, please refer to corresponding release notes (e.g., readme.txt... »

Adding your own signatures to NinjaFirewall Anti-Malware.

Starting from version 3.2, NinjaFirewall (WP / WP+ Edition) includes a new feature: Anti-Malware. It allows you to scan your website for malware. It... »

All In One WP Security & Firewall multiple XSS vulnerabilities (<=4.0.7).

NinTechNet identified multiple XSS vulnerabilities in the All In One WP Security & Firewall v4.0.7 plugin. The affected parameter was 'tab' (all... »

How to upgrade NinjaFirewall WP/Pro to the WP+/Pro+ Edition.

This article covers the steps to follow if you want to upgrade from the free NinjaFirewall WP or Pro Edition to the WP+ or... »

Anatomy of the EICAR Antivirus Test File.

A customer using NinjaFirewall (WP+), our Web Application Firewall for WordPress, asked us to explain what was the meaning of this line, found in... »

Announcing NinjaFirewall Referral Program.

We are happy to launch today our NinjaFirewall Referral Program. You can earn up to 20% for every payment made by a user who... »

An introduction to NinjaFirewall filtering engine.Featured post

Starting from version 3.0, NinjaFirewall, our Web Application Firewall for PHP (Pro and Pro+ Edition) and WordPress (WP and WP+ Edition), includes a... »

Malicious plugins hosted in the WordPress Plugin repository.

While cleaning-up an infected server today, I came across this plugin: Breadcrumb shortcode (slug: breadcrumbs-ez). It was downloaded from the WordPress official repository but... »

Fake WordPress plugin repository distributing malware.

We mentioned a few weeks ago fake WordPress websites used by hackers to distribute malware via malicious plugins installed on their victims blog. Hackers... »