Getting quickly informed when a security update is available in your themes or plugins is an important factor in keeping your website safe.
A few months ago, we introduced a new feature in our WordPress WAF plugin, NinjaFirewall (WP/WP+ Edition):
Enabled by default in the Event Notifications page, this feature automatically informs you by email when there’s a security update available. Here’s an example of notification sent by NinjaFirewall:
Every hour, NinjaFirewall connects to our servers, downloads the list of the latest security updates available (<3 months) and compares it to the themes and plugins installed on your blog. If one of them is in that list, you're immediately notified and asked to update it. However, the most interesting part of that feature is that it will not alert you about known vulnerabilities only, but about undisclosed ones as well. For instance, there are currently 95 recent security updates in our list, but only 40 of them have been publicly disclosed, either by us or by other security companies or individuals. Fifty five of them – 57% – are and will remain undisclosed for various reasons.
That unique feature, not found in any other WordPress security plugin, is available in both NinjaFirewall WP Edition (Free) and NinjaFirewall WP+ Edition (Premium) and offers our customers an extra layer of security to keep their website safe.