SlideShare a Scribd company logo
Head Slapping
WordPress Security
Chris Burgess - @chrisburgess - chrisburgess.com.au
#BigDigitalADL
Is this how you feel about the topic
of security?
Not everyone loves security J
But everyone should care about it.
Security is CRITICAL for business
and marketing operations.
Security is not absolute.
It’s about risks and managing
the risks.
Security is not a Product.
Security is a Process.
Don’t wait to see something like this
before you care about it.
Try and be proactive, not just reactive.
•  xxx
http://www.dailymail.co.uk/news/article-1388660/Mississippi-River-flooding-Residents-build-homemade-dams-saves-houses.html
What we’ll cover…
•  Common myths and misconceptions
•  Why is WordPress a popular target?
•  Who is an attacker?
•  What motivates them?
•  How do they do it?
•  What can they do?
•  What is the impact?
•  What can you do?
•  Common mistakes and how to avoid them
A little about me…
•  Co-founder Clickify – Digital Marketing Agency
•  Editor for SitePoint WordPress Channel
•  Help organise a few Meetups (Melbourne
WordPress User Meetup and Melbourne SEO
Meetup)
@chrisburgess
Let’s get started…
http://www.humoar.com/wp-content/uploads/2014/08/dude-let-me-in-its-me-mittens.jpg
http://www.humoar.com/wp-content/uploads/2014/08/dude-let-me-in-its-me-mittens.jpg
There is no such thing as
absolute security.
Nothing is 100% secure.
The good news –
there are many things we can do to
drastically reduce the risks.
Myths and misconceptions
Common myths and misconceptions
“WordPress sites always get hacked.”
“No one is interested in attacking my site.”
“I’ve got nothing valuable for anyone to steal.”
“Security is not my problem, my host/developer/
plugin takes care of security for me.”
Why is WordPress a popular
target?
WordPress powers 38% of the
top 10k sites
http://trends.builtwith.com/cms/
WordPress powers 55% of .au sites
http://trends.builtwith.com/cms/country/Australia
Example of WordPress vulnerabilities
Source: http://wptavern.com
“Most successful WordPress hack
attacks are typically the result of
human error, be it a configuration
error or failing to maintain WordPress,
such as keeping core and all plugins
up to date, or installing insecure
plugins etc.”
- Robert Abela (@robertabela)
Who is an attacker?
According to stock photography...
Who is an attacker?
A person or group who’s trying to attack your site.
It may personal, but most often you’re just a victim of
opportunity.
Typically, your website is just one faceless entity on a
massive list of sites being scanned and probed.
What motivates them?
They can be motivated by…
•  Economic gain
•  Theft
•  Political awareness
•  Just for kicks, or a challenge
How do they do it?
Defense in depth
https://technet.microsoft.com/en-us/library/cc512681.aspx
There are approximately 1500
files in a default WordPress
installation – not including
themes and plugins.
What’s under the hood
•  WordPress relies on a many popular Open Source libraries (as does
most software).
•  Here are a few of the most common ones:
–  jQuery
–  jQuery Masonry
–  jQuery Hotkeys
–  jQuery Suggest
–  jQuery Form
–  jQuery Color
–  jQuery Migrate
–  jQuery Schedule
–  jQuery UI
–  Backbone
–  colorpicker
–  hoverIntent
–  SWFObject
–  TinyMCE
–  Atom Lib
–  Text Diff
–  SimplePie
–  Pomo
–  ID3
–  Snoopy
–  PHPMailer
–  POP3 Class
–  PHPass
–  PemFTP
https://www.sitepoint.com/javascript-and-php-libraries-used-by-wordpress/
They can do it via…
OUT OF DATE OR VULNERABLE THEMES
OUT OF DATE OR VULNERABLE PLUGINS
OUT OF DATE VERSION OF WORDPRESS
INTEGRATIONS
POOR PROCESSES
BAD PASSWORDS AND
PASSWORD MANAGEMENT
MISCONFIGURATION
HUMAN ERROR
What can they do?
Sucuri Website Hacked Trend
Report 2016
https://sucuri.net/website-security/Reports/Sucuri-Website-Hacked-Report-2016Q1.pdf
What is the impact?
https://www.google.com/webmasters/hacked/
https://www.google.com/webmasters/hacked/
Real example of a compromised site in Google search results
Real example of a compromised site in Google search results
Example of Resources Consumed
Google Search Console
Netregistry email about compromised site
Real example of a malicious plugin
Real example of a malicious file
Google Search Console
Google AdWords
Head Slapping WordPress Security
Ahrefs and Google Search Console
Real example of anchor text from ahrefs.
Real example of links in Google Search Console
Real example of a malicious plugin.
Real example of a malicious plugin.
Real example of black hat SEO.
Impacts your bottom line
•  Loss in revenue
•  Lose customers
•  Cost of professional help
•  Cost of your time
•  Cost of your resources
•  Potential legal and compliance issues
$
Damage to reputation
•  Affects brand reputation
•  Can compromise visitor systems or data
•  Loss of trust and confidence amongst
customers or clients
•  Negative publicity
L
STRESS!
•  Causes you unnecessary stress dealing with
the security breach
•  Can even cause stress to your staff, colleagues
and customers
!
Technical issues
•  Blacklisting
•  Email deliverability
•  SEO and SEM impacts
•  Domain and IP reputation
•  Downtime and outages
What Can You Do?
Be practically paranoid.
http://favoritememes.com/_nw/37/42148895.jpg
Give your team basic security
awareness training.
Practice principle of least privilege.
Use Google Search Console
Do regular backups and store offsite
•  Server Level Backups
–  cPanel/Plesk
–  Replication
–  Snapshots
•  Backup Services
•  Backup Plugins
–  Updraft Plus
–  WordPress Backup to Dropbox
–  VaultPress
–  Backup Buddy
–  Duplicator
•  Manual Backups
•  Exports
Maintenance
“Patch early and patch often”
Use a security plugin
(or manually harden)
https://www.wordfence.com/
https://sucuri.net/
https://ithemes.com/security/
Use password management
Personal
•  LastPass
•  Dashlane
•  1Password
•  KeePass
•  Passwordsafe
•  Roboform
•  Browser Password Manager
•  Native OS
Teams
•  LastPass Enterprise
•  Bitium
•  1Password for Teams
•  Secret Server
•  PassPack
Monitor your Sitemap XML,
robots.txt and .htaccess files.
Use two-factor authentication
Server security
•  System Monitoring
•  Integrity Monitoring
•  Firewalls
•  IDS/IPS
•  Logging
Use strong encryption
•  Avoid plain text protocols
•  Everyone should use SSL (and make sure it’s
configured correctly)
WPScan WordPress Scanner
Other resources
•  WordPress.org
–  wordpress.org/about/security
–  wordpress.org/news/category/security
•  Codex.WordPress.org
–  codex.wordpress.org/hardening_wordpress
–  codex.wordpress.org/brute_force_attacks#protect_your_server
•  Verizon DBIR - http://www.verizonenterprise.com/verizon-insights-
lab/dbir/
•  Sucuri - https://sucuri.net/
•  OWASP - http://owasp.org/
•  WP White Security - https://www.wpwhitesecurity.com/
•  Google Safe Browsing - https://www.google.com/
transparencyreport/safebrowsing/diagnostic/
Common mistakes and
how to avoid them
1. Don’t use weak user names and
passwords (admin:password123).
2. Don’t have publically accessible
backups (e.g /backup.zip).
3. Don’t have publically accessible
config files (wp-config.php.old).
4. Don’t forget to backup your site
regularly. Store offsite.
5. Don’t forget to regularly update
your WordPress site.
6. Take advantage of the plugins,
tools and services available to
protect your site.
Any Questions?
@chrisburgess – chris@chrisburgess.com.au
? ? ?

More Related Content

What's hot

Paid Traffic with WordPress PPC Hacks - by Peter Mead for BigDigital 2016
Paid Traffic with WordPress PPC Hacks - by Peter Mead for BigDigital 2016Paid Traffic with WordPress PPC Hacks - by Peter Mead for BigDigital 2016
Paid Traffic with WordPress PPC Hacks - by Peter Mead for BigDigital 2016
Peter Mead
 
Installing WordPress The Right Way
Installing WordPress The Right WayInstalling WordPress The Right Way
Installing WordPress The Right Way
Chris Burgess
 
10 Ways to Speed Up and Secure your WP Site
10 Ways to Speed Up and Secure your WP Site10 Ways to Speed Up and Secure your WP Site
10 Ways to Speed Up and Secure your WP Site
FLBlogCon
 
FL Blog Con 2015: How To Find The Best WordPress Plugins For You
FL Blog Con 2015: How To Find The Best WordPress Plugins For YouFL Blog Con 2015: How To Find The Best WordPress Plugins For You
FL Blog Con 2015: How To Find The Best WordPress Plugins For You
Adam Soucie
 
WordPress Themes Demystified
WordPress Themes DemystifiedWordPress Themes Demystified
WordPress Themes Demystified
Chris Burgess
 
What I learned about SEO (while building a WordPress Theme)
What I learned about SEO (while building a WordPress Theme)What I learned about SEO (while building a WordPress Theme)
What I learned about SEO (while building a WordPress Theme)
David Zimmerman
 
WordPress SEO & Optimisation
WordPress SEO & OptimisationWordPress SEO & Optimisation
WordPress SEO & Optimisation
Joost de Valk
 
20 Tips to Improving WordPress Website - for Beginners-Aus-2017
20 Tips to Improving WordPress Website - for Beginners-Aus-201720 Tips to Improving WordPress Website - for Beginners-Aus-2017
20 Tips to Improving WordPress Website - for Beginners-Aus-2017
TRB Design, Inc.
 
Emergency WordPress Troubleshooting
Emergency WordPress TroubleshootingEmergency WordPress Troubleshooting
Emergency WordPress Troubleshooting
Tiffany Bridge
 
CALM Wordpress 102
CALM Wordpress 102CALM Wordpress 102
CALM Wordpress 102
darren_puscas
 
Wordpress SEO - Wordcamp Seattle #wcsea
Wordpress SEO - Wordcamp Seattle #wcseaWordpress SEO - Wordcamp Seattle #wcsea
Wordpress SEO - Wordcamp Seattle #wcsea
Justin Briggs
 
Sucuri Webinar: How to Optimize Your Website for Best Performance
Sucuri Webinar: How to Optimize Your Website for Best PerformanceSucuri Webinar: How to Optimize Your Website for Best Performance
Sucuri Webinar: How to Optimize Your Website for Best Performance
Sucuri
 
20 tips to Improving Your WordPress Site...for Beginners
20 tips to Improving Your WordPress Site...for Beginners20 tips to Improving Your WordPress Site...for Beginners
20 tips to Improving Your WordPress Site...for Beginners
TRB Design, Inc.
 
WordPress best practices by billrice
WordPress best practices by billriceWordPress best practices by billrice
WordPress best practices by billrice
RiceDesign
 
Wordcamp, India 2009 - How to Implement SEO on a Wordpress Blog - Wordpress S...
Wordcamp, India 2009 - How to Implement SEO on a Wordpress Blog - Wordpress S...Wordcamp, India 2009 - How to Implement SEO on a Wordpress Blog - Wordpress S...
Wordcamp, India 2009 - How to Implement SEO on a Wordpress Blog - Wordpress S...
Abhinav Gulyani
 
Building a website with WordPress
Building a website with WordPressBuilding a website with WordPress
Building a website with WordPress
Anthony Montalbano
 
What Is WordPress and Why Should I Use It? - Workshop April 2015
What Is WordPress and Why Should I Use It? - Workshop April 2015What Is WordPress and Why Should I Use It? - Workshop April 2015
What Is WordPress and Why Should I Use It? - Workshop April 2015
BobWP.com
 
Managing WordPress
Managing WordPressManaging WordPress
Managing WordPress
Steven Watts
 
WordCamp Ireland - 40 tips for WordPress Optimization
WordCamp Ireland - 40 tips for WordPress OptimizationWordCamp Ireland - 40 tips for WordPress Optimization
WordCamp Ireland - 40 tips for WordPress Optimization
Joost de Valk
 
2010 11 pubcon_hendison-hosting
2010 11 pubcon_hendison-hosting2010 11 pubcon_hendison-hosting
2010 11 pubcon_hendison-hosting
shendison
 

What's hot (20)

Paid Traffic with WordPress PPC Hacks - by Peter Mead for BigDigital 2016
Paid Traffic with WordPress PPC Hacks - by Peter Mead for BigDigital 2016Paid Traffic with WordPress PPC Hacks - by Peter Mead for BigDigital 2016
Paid Traffic with WordPress PPC Hacks - by Peter Mead for BigDigital 2016
 
Installing WordPress The Right Way
Installing WordPress The Right WayInstalling WordPress The Right Way
Installing WordPress The Right Way
 
10 Ways to Speed Up and Secure your WP Site
10 Ways to Speed Up and Secure your WP Site10 Ways to Speed Up and Secure your WP Site
10 Ways to Speed Up and Secure your WP Site
 
FL Blog Con 2015: How To Find The Best WordPress Plugins For You
FL Blog Con 2015: How To Find The Best WordPress Plugins For YouFL Blog Con 2015: How To Find The Best WordPress Plugins For You
FL Blog Con 2015: How To Find The Best WordPress Plugins For You
 
WordPress Themes Demystified
WordPress Themes DemystifiedWordPress Themes Demystified
WordPress Themes Demystified
 
What I learned about SEO (while building a WordPress Theme)
What I learned about SEO (while building a WordPress Theme)What I learned about SEO (while building a WordPress Theme)
What I learned about SEO (while building a WordPress Theme)
 
WordPress SEO & Optimisation
WordPress SEO & OptimisationWordPress SEO & Optimisation
WordPress SEO & Optimisation
 
20 Tips to Improving WordPress Website - for Beginners-Aus-2017
20 Tips to Improving WordPress Website - for Beginners-Aus-201720 Tips to Improving WordPress Website - for Beginners-Aus-2017
20 Tips to Improving WordPress Website - for Beginners-Aus-2017
 
Emergency WordPress Troubleshooting
Emergency WordPress TroubleshootingEmergency WordPress Troubleshooting
Emergency WordPress Troubleshooting
 
CALM Wordpress 102
CALM Wordpress 102CALM Wordpress 102
CALM Wordpress 102
 
Wordpress SEO - Wordcamp Seattle #wcsea
Wordpress SEO - Wordcamp Seattle #wcseaWordpress SEO - Wordcamp Seattle #wcsea
Wordpress SEO - Wordcamp Seattle #wcsea
 
Sucuri Webinar: How to Optimize Your Website for Best Performance
Sucuri Webinar: How to Optimize Your Website for Best PerformanceSucuri Webinar: How to Optimize Your Website for Best Performance
Sucuri Webinar: How to Optimize Your Website for Best Performance
 
20 tips to Improving Your WordPress Site...for Beginners
20 tips to Improving Your WordPress Site...for Beginners20 tips to Improving Your WordPress Site...for Beginners
20 tips to Improving Your WordPress Site...for Beginners
 
WordPress best practices by billrice
WordPress best practices by billriceWordPress best practices by billrice
WordPress best practices by billrice
 
Wordcamp, India 2009 - How to Implement SEO on a Wordpress Blog - Wordpress S...
Wordcamp, India 2009 - How to Implement SEO on a Wordpress Blog - Wordpress S...Wordcamp, India 2009 - How to Implement SEO on a Wordpress Blog - Wordpress S...
Wordcamp, India 2009 - How to Implement SEO on a Wordpress Blog - Wordpress S...
 
Building a website with WordPress
Building a website with WordPressBuilding a website with WordPress
Building a website with WordPress
 
What Is WordPress and Why Should I Use It? - Workshop April 2015
What Is WordPress and Why Should I Use It? - Workshop April 2015What Is WordPress and Why Should I Use It? - Workshop April 2015
What Is WordPress and Why Should I Use It? - Workshop April 2015
 
Managing WordPress
Managing WordPressManaging WordPress
Managing WordPress
 
WordCamp Ireland - 40 tips for WordPress Optimization
WordCamp Ireland - 40 tips for WordPress OptimizationWordCamp Ireland - 40 tips for WordPress Optimization
WordCamp Ireland - 40 tips for WordPress Optimization
 
2010 11 pubcon_hendison-hosting
2010 11 pubcon_hendison-hosting2010 11 pubcon_hendison-hosting
2010 11 pubcon_hendison-hosting
 

Viewers also liked

Mobile Visibility to the Max - 2016 Edition #BigDigitalADL
Mobile Visibility to the Max - 2016 Edition #BigDigitalADLMobile Visibility to the Max - 2016 Edition #BigDigitalADL
Mobile Visibility to the Max - 2016 Edition #BigDigitalADL
Aleyda Solís
 
Harnessing The Power Of Archetypes For Your Digital Marketing
Harnessing The Power Of Archetypes For Your Digital MarketingHarnessing The Power Of Archetypes For Your Digital Marketing
Harnessing The Power Of Archetypes For Your Digital Marketing
Gianluca Fiorelli
 
Negotiating crawl budget with googlebots
Negotiating crawl budget with googlebotsNegotiating crawl budget with googlebots
Negotiating crawl budget with googlebots
Dawn Anderson MSc DigM
 
How to achieve mind-blowing Content Marketing ROI
How to achieve mind-blowing Content Marketing ROIHow to achieve mind-blowing Content Marketing ROI
How to achieve mind-blowing Content Marketing ROI
Jeremy Cabral
 
Writing the Right Content at #SMS2016
Writing the Right Content at #SMS2016 Writing the Right Content at #SMS2016
Writing the Right Content at #SMS2016
Aleyda Solís
 
Keeping Things Lean & Mean: Crawl Optimisation - Search Marketing Summit AU
Keeping Things Lean & Mean: Crawl Optimisation - Search Marketing Summit AUKeeping Things Lean & Mean: Crawl Optimisation - Search Marketing Summit AU
Keeping Things Lean & Mean: Crawl Optimisation - Search Marketing Summit AU
Jason Mun
 
Tori Cushing - Actionable SEO Insights - SMX 2015
Tori Cushing - Actionable SEO Insights - SMX 2015Tori Cushing - Actionable SEO Insights - SMX 2015
Tori Cushing - Actionable SEO Insights - SMX 2015
Victoria Cushing
 
Accelerated Mobile Pages (AMP)
Accelerated Mobile Pages (AMP)Accelerated Mobile Pages (AMP)
Accelerated Mobile Pages (AMP)
Chris Burgess
 
SEO Training at Envatotalks
SEO Training at EnvatotalksSEO Training at Envatotalks
SEO Training at Envatotalks
Chris Burgess
 
WordPress Menus - Melbourne User Meetup
WordPress Menus - Melbourne User MeetupWordPress Menus - Melbourne User Meetup
WordPress Menus - Melbourne User Meetup
Chris Burgess
 
Final cbd slides
Final cbd slidesFinal cbd slides
Final cbd slides
Jennifer Jeavons
 
Contributing to WordPress: Why it's Important to Your Business
Contributing to WordPress: Why it's Important to Your Business Contributing to WordPress: Why it's Important to Your Business
Contributing to WordPress: Why it's Important to Your Business
Kel
 
Recurring Revenue Roadmap Keynote
Recurring Revenue Roadmap KeynoteRecurring Revenue Roadmap Keynote
Recurring Revenue Roadmap Keynote
Troy Dean
 
Build on Chassis: Introduction to a Solid Development Workflow
Build on Chassis: Introduction to a Solid Development WorkflowBuild on Chassis: Introduction to a Solid Development Workflow
Build on Chassis: Introduction to a Solid Development Workflow
Japheth Thomson
 
13 Tips for Publishing Content
13 Tips for Publishing Content13 Tips for Publishing Content
13 Tips for Publishing Content
E-Web Marketing
 
Instagram for tour operators
Instagram for tour operatorsInstagram for tour operators
Instagram for tour operators
In Marketing We Trust
 
Online SEO Meetup
Online SEO MeetupOnline SEO Meetup
Online SEO Meetup
Semrush
 

Viewers also liked (17)

Mobile Visibility to the Max - 2016 Edition #BigDigitalADL
Mobile Visibility to the Max - 2016 Edition #BigDigitalADLMobile Visibility to the Max - 2016 Edition #BigDigitalADL
Mobile Visibility to the Max - 2016 Edition #BigDigitalADL
 
Harnessing The Power Of Archetypes For Your Digital Marketing
Harnessing The Power Of Archetypes For Your Digital MarketingHarnessing The Power Of Archetypes For Your Digital Marketing
Harnessing The Power Of Archetypes For Your Digital Marketing
 
Negotiating crawl budget with googlebots
Negotiating crawl budget with googlebotsNegotiating crawl budget with googlebots
Negotiating crawl budget with googlebots
 
How to achieve mind-blowing Content Marketing ROI
How to achieve mind-blowing Content Marketing ROIHow to achieve mind-blowing Content Marketing ROI
How to achieve mind-blowing Content Marketing ROI
 
Writing the Right Content at #SMS2016
Writing the Right Content at #SMS2016 Writing the Right Content at #SMS2016
Writing the Right Content at #SMS2016
 
Keeping Things Lean & Mean: Crawl Optimisation - Search Marketing Summit AU
Keeping Things Lean & Mean: Crawl Optimisation - Search Marketing Summit AUKeeping Things Lean & Mean: Crawl Optimisation - Search Marketing Summit AU
Keeping Things Lean & Mean: Crawl Optimisation - Search Marketing Summit AU
 
Tori Cushing - Actionable SEO Insights - SMX 2015
Tori Cushing - Actionable SEO Insights - SMX 2015Tori Cushing - Actionable SEO Insights - SMX 2015
Tori Cushing - Actionable SEO Insights - SMX 2015
 
Accelerated Mobile Pages (AMP)
Accelerated Mobile Pages (AMP)Accelerated Mobile Pages (AMP)
Accelerated Mobile Pages (AMP)
 
SEO Training at Envatotalks
SEO Training at EnvatotalksSEO Training at Envatotalks
SEO Training at Envatotalks
 
WordPress Menus - Melbourne User Meetup
WordPress Menus - Melbourne User MeetupWordPress Menus - Melbourne User Meetup
WordPress Menus - Melbourne User Meetup
 
Final cbd slides
Final cbd slidesFinal cbd slides
Final cbd slides
 
Contributing to WordPress: Why it's Important to Your Business
Contributing to WordPress: Why it's Important to Your Business Contributing to WordPress: Why it's Important to Your Business
Contributing to WordPress: Why it's Important to Your Business
 
Recurring Revenue Roadmap Keynote
Recurring Revenue Roadmap KeynoteRecurring Revenue Roadmap Keynote
Recurring Revenue Roadmap Keynote
 
Build on Chassis: Introduction to a Solid Development Workflow
Build on Chassis: Introduction to a Solid Development WorkflowBuild on Chassis: Introduction to a Solid Development Workflow
Build on Chassis: Introduction to a Solid Development Workflow
 
13 Tips for Publishing Content
13 Tips for Publishing Content13 Tips for Publishing Content
13 Tips for Publishing Content
 
Instagram for tour operators
Instagram for tour operatorsInstagram for tour operators
Instagram for tour operators
 
Online SEO Meetup
Online SEO MeetupOnline SEO Meetup
Online SEO Meetup
 

Similar to Head Slapping WordPress Security

Professional WordPress Security: Beyond Security Plugins
Professional WordPress Security: Beyond Security PluginsProfessional WordPress Security: Beyond Security Plugins
Professional WordPress Security: Beyond Security Plugins
Chris Burgess
 
Thoughts on Defensive Development for Sitecore
Thoughts on Defensive Development for SitecoreThoughts on Defensive Development for Sitecore
Thoughts on Defensive Development for Sitecore
PINT Inc
 
Presentation infra and_datacentrre_dialogue_v2
Presentation infra and_datacentrre_dialogue_v2Presentation infra and_datacentrre_dialogue_v2
Presentation infra and_datacentrre_dialogue_v2
Claus Cramon Houmann
 
Networking 2016-06-14 - The Dirty Secrets of Enterprise Security by Kevin Dunn
Networking 2016-06-14 - The Dirty Secrets of Enterprise Security by Kevin DunnNetworking 2016-06-14 - The Dirty Secrets of Enterprise Security by Kevin Dunn
Networking 2016-06-14 - The Dirty Secrets of Enterprise Security by Kevin Dunn
North Texas Chapter of the ISSA
 
Defending Enterprise IT - beating assymetricality
Defending Enterprise IT - beating assymetricalityDefending Enterprise IT - beating assymetricality
Defending Enterprise IT - beating assymetricality
Claus Cramon Houmann
 
Keynote at the Cyber Security Summit Prague 2015
Keynote at the Cyber Security Summit Prague 2015Keynote at the Cyber Security Summit Prague 2015
Keynote at the Cyber Security Summit Prague 2015
Claus Cramon Houmann
 
Intro to INFOSEC
Intro to INFOSECIntro to INFOSEC
Intro to INFOSEC
Sean Whalen
 
Keynote Information Security days Luxembourg 2015
Keynote Information Security days Luxembourg 2015Keynote Information Security days Luxembourg 2015
Keynote Information Security days Luxembourg 2015
Claus Cramon Houmann
 
An Introduction To IT Security And Privacy In Libraries
 An Introduction To IT Security And Privacy In Libraries An Introduction To IT Security And Privacy In Libraries
An Introduction To IT Security And Privacy In Libraries
Blake Carver
 
Security in an Interconnected and Complex World of Software
Security in an Interconnected and Complex World of SoftwareSecurity in an Interconnected and Complex World of Software
Security in an Interconnected and Complex World of Software
Michael Coates
 
A Practical Security Framework for Website Owners
A Practical Security Framework for Website OwnersA Practical Security Framework for Website Owners
A Practical Security Framework for Website Owners
Tony Perez
 
Janitor vs cleaner
Janitor vs cleanerJanitor vs cleaner
Janitor vs cleaner
John Stauffacher
 
How to Destroy a Database
How to Destroy a DatabaseHow to Destroy a Database
How to Destroy a Database
John Ashmead
 
Be Securious – Hack Your Own Site for Better Security
Be Securious –  Hack Your Own Site for Better SecurityBe Securious –  Hack Your Own Site for Better Security
Be Securious – Hack Your Own Site for Better Security
securiously
 
Modernizing, Migrating & Mitigating - Moving to Modern Cloud & API Web Apps W...
Modernizing, Migrating & Mitigating - Moving to Modern Cloud & API Web Apps W...Modernizing, Migrating & Mitigating - Moving to Modern Cloud & API Web Apps W...
Modernizing, Migrating & Mitigating - Moving to Modern Cloud & API Web Apps W...
Security Innovation
 
Blog World 2010 - How to Keep Your Blog from Being Hacked
Blog World 2010 - How to Keep Your Blog from Being HackedBlog World 2010 - How to Keep Your Blog from Being Hacked
Blog World 2010 - How to Keep Your Blog from Being Hacked
Brian Layman
 
How to Boost your Cyber Risk Management Program and Capabilities?
How to Boost your Cyber Risk Management Program and Capabilities?How to Boost your Cyber Risk Management Program and Capabilities?
How to Boost your Cyber Risk Management Program and Capabilities?
PECB
 
Confidence web
Confidence webConfidence web
Confidence web
Dan Kaminsky
 
The state of web applications (in)security @ ITDays 2016
The state of web applications (in)security @ ITDays 2016The state of web applications (in)security @ ITDays 2016
The state of web applications (in)security @ ITDays 2016
Tudor Damian
 
CIO Summit: Data Security in a Mobile World
CIO Summit: Data Security in a Mobile WorldCIO Summit: Data Security in a Mobile World
CIO Summit: Data Security in a Mobile World
iMIS
 

Similar to Head Slapping WordPress Security (20)

Professional WordPress Security: Beyond Security Plugins
Professional WordPress Security: Beyond Security PluginsProfessional WordPress Security: Beyond Security Plugins
Professional WordPress Security: Beyond Security Plugins
 
Thoughts on Defensive Development for Sitecore
Thoughts on Defensive Development for SitecoreThoughts on Defensive Development for Sitecore
Thoughts on Defensive Development for Sitecore
 
Presentation infra and_datacentrre_dialogue_v2
Presentation infra and_datacentrre_dialogue_v2Presentation infra and_datacentrre_dialogue_v2
Presentation infra and_datacentrre_dialogue_v2
 
Networking 2016-06-14 - The Dirty Secrets of Enterprise Security by Kevin Dunn
Networking 2016-06-14 - The Dirty Secrets of Enterprise Security by Kevin DunnNetworking 2016-06-14 - The Dirty Secrets of Enterprise Security by Kevin Dunn
Networking 2016-06-14 - The Dirty Secrets of Enterprise Security by Kevin Dunn
 
Defending Enterprise IT - beating assymetricality
Defending Enterprise IT - beating assymetricalityDefending Enterprise IT - beating assymetricality
Defending Enterprise IT - beating assymetricality
 
Keynote at the Cyber Security Summit Prague 2015
Keynote at the Cyber Security Summit Prague 2015Keynote at the Cyber Security Summit Prague 2015
Keynote at the Cyber Security Summit Prague 2015
 
Intro to INFOSEC
Intro to INFOSECIntro to INFOSEC
Intro to INFOSEC
 
Keynote Information Security days Luxembourg 2015
Keynote Information Security days Luxembourg 2015Keynote Information Security days Luxembourg 2015
Keynote Information Security days Luxembourg 2015
 
An Introduction To IT Security And Privacy In Libraries
 An Introduction To IT Security And Privacy In Libraries An Introduction To IT Security And Privacy In Libraries
An Introduction To IT Security And Privacy In Libraries
 
Security in an Interconnected and Complex World of Software
Security in an Interconnected and Complex World of SoftwareSecurity in an Interconnected and Complex World of Software
Security in an Interconnected and Complex World of Software
 
A Practical Security Framework for Website Owners
A Practical Security Framework for Website OwnersA Practical Security Framework for Website Owners
A Practical Security Framework for Website Owners
 
Janitor vs cleaner
Janitor vs cleanerJanitor vs cleaner
Janitor vs cleaner
 
How to Destroy a Database
How to Destroy a DatabaseHow to Destroy a Database
How to Destroy a Database
 
Be Securious – Hack Your Own Site for Better Security
Be Securious –  Hack Your Own Site for Better SecurityBe Securious –  Hack Your Own Site for Better Security
Be Securious – Hack Your Own Site for Better Security
 
Modernizing, Migrating & Mitigating - Moving to Modern Cloud & API Web Apps W...
Modernizing, Migrating & Mitigating - Moving to Modern Cloud & API Web Apps W...Modernizing, Migrating & Mitigating - Moving to Modern Cloud & API Web Apps W...
Modernizing, Migrating & Mitigating - Moving to Modern Cloud & API Web Apps W...
 
Blog World 2010 - How to Keep Your Blog from Being Hacked
Blog World 2010 - How to Keep Your Blog from Being HackedBlog World 2010 - How to Keep Your Blog from Being Hacked
Blog World 2010 - How to Keep Your Blog from Being Hacked
 
How to Boost your Cyber Risk Management Program and Capabilities?
How to Boost your Cyber Risk Management Program and Capabilities?How to Boost your Cyber Risk Management Program and Capabilities?
How to Boost your Cyber Risk Management Program and Capabilities?
 
Confidence web
Confidence webConfidence web
Confidence web
 
The state of web applications (in)security @ ITDays 2016
The state of web applications (in)security @ ITDays 2016The state of web applications (in)security @ ITDays 2016
The state of web applications (in)security @ ITDays 2016
 
CIO Summit: Data Security in a Mobile World
CIO Summit: Data Security in a Mobile WorldCIO Summit: Data Security in a Mobile World
CIO Summit: Data Security in a Mobile World
 

More from Chris Burgess

Getting Started with Google Data Studio
Getting Started with Google Data StudioGetting Started with Google Data Studio
Getting Started with Google Data Studio
Chris Burgess
 
WordPress Hosting Basics
WordPress Hosting BasicsWordPress Hosting Basics
WordPress Hosting Basics
Chris Burgess
 
Improving the WordPress Ecosystem with Tide
Improving the WordPress Ecosystem with TideImproving the WordPress Ecosystem with Tide
Improving the WordPress Ecosystem with Tide
Chris Burgess
 
Deep Dive Into Yoast SEO 7
Deep Dive Into Yoast SEO 7Deep Dive Into Yoast SEO 7
Deep Dive Into Yoast SEO 7
Chris Burgess
 
Bootstrapping eCommerce with WordPress and WooCommerce
Bootstrapping eCommerce with WordPress and WooCommerceBootstrapping eCommerce with WordPress and WooCommerce
Bootstrapping eCommerce with WordPress and WooCommerce
Chris Burgess
 
WordPress and SSL
WordPress and SSLWordPress and SSL
WordPress and SSL
Chris Burgess
 
Choosing the Right WordPress Theme
Choosing the Right WordPress ThemeChoosing the Right WordPress Theme
Choosing the Right WordPress Theme
Chris Burgess
 
SEO Basics for Bloggers
SEO Basics for BloggersSEO Basics for Bloggers
SEO Basics for Bloggers
Chris Burgess
 

More from Chris Burgess (8)

Getting Started with Google Data Studio
Getting Started with Google Data StudioGetting Started with Google Data Studio
Getting Started with Google Data Studio
 
WordPress Hosting Basics
WordPress Hosting BasicsWordPress Hosting Basics
WordPress Hosting Basics
 
Improving the WordPress Ecosystem with Tide
Improving the WordPress Ecosystem with TideImproving the WordPress Ecosystem with Tide
Improving the WordPress Ecosystem with Tide
 
Deep Dive Into Yoast SEO 7
Deep Dive Into Yoast SEO 7Deep Dive Into Yoast SEO 7
Deep Dive Into Yoast SEO 7
 
Bootstrapping eCommerce with WordPress and WooCommerce
Bootstrapping eCommerce with WordPress and WooCommerceBootstrapping eCommerce with WordPress and WooCommerce
Bootstrapping eCommerce with WordPress and WooCommerce
 
WordPress and SSL
WordPress and SSLWordPress and SSL
WordPress and SSL
 
Choosing the Right WordPress Theme
Choosing the Right WordPress ThemeChoosing the Right WordPress Theme
Choosing the Right WordPress Theme
 
SEO Basics for Bloggers
SEO Basics for BloggersSEO Basics for Bloggers
SEO Basics for Bloggers
 

Recently uploaded

Advantages of digital marketing course telugu
Advantages of digital marketing course teluguAdvantages of digital marketing course telugu
Advantages of digital marketing course telugu
satyasafi79812
 
Adult Services Ads _ Adult Search Engine Marketing _ Adult Ads.pdf
Adult Services Ads _ Adult Search Engine Marketing _ Adult Ads.pdfAdult Services Ads _ Adult Search Engine Marketing _ Adult Ads.pdf
Adult Services Ads _ Adult Search Engine Marketing _ Adult Ads.pdf
jorge638714
 
The Key Features of Social Marketing Strategies for Success www.eflot.com.pdf
The Key Features of Social Marketing Strategies for Success www.eflot.com.pdfThe Key Features of Social Marketing Strategies for Success www.eflot.com.pdf
The Key Features of Social Marketing Strategies for Success www.eflot.com.pdf
df2608021
 
Snapshot of Consumer Behaviors of June 2024-EOLiSurvey (EN).pdf
Snapshot of Consumer Behaviors of June 2024-EOLiSurvey (EN).pdfSnapshot of Consumer Behaviors of June 2024-EOLiSurvey (EN).pdf
Snapshot of Consumer Behaviors of June 2024-EOLiSurvey (EN).pdf
Eastern Online-iSURVEY
 
CAMPUSEDGE ENETERPRISE RESOURCE MANAGEMENT SOFTWARE
CAMPUSEDGE ENETERPRISE RESOURCE MANAGEMENT SOFTWARECAMPUSEDGE ENETERPRISE RESOURCE MANAGEMENT SOFTWARE
CAMPUSEDGE ENETERPRISE RESOURCE MANAGEMENT SOFTWARE
solitaireshubham
 
Bumble users can use Al generated photos
Bumble users can use Al generated photosBumble users can use Al generated photos
Bumble users can use Al generated photos
techkidunia
 
Go To Market Strategy - Zig When Others Zag
Go To Market Strategy - Zig When Others ZagGo To Market Strategy - Zig When Others Zag
Go To Market Strategy - Zig When Others Zag
Rajesh Math
 
MKT460: Strategic Marketing_ SeH_ Kishwan Cookies.pdf
MKT460: Strategic Marketing_ SeH_ Kishwan Cookies.pdfMKT460: Strategic Marketing_ SeH_ Kishwan Cookies.pdf
MKT460: Strategic Marketing_ SeH_ Kishwan Cookies.pdf
Mohammad Tauhidul Islam Khan Rifat
 
The Power of Micro Influencers in Influencer Marketing.pptx
The Power of Micro Influencers in Influencer Marketing.pptxThe Power of Micro Influencers in Influencer Marketing.pptx
The Power of Micro Influencers in Influencer Marketing.pptx
Inflyx
 
Digital Marketing Manager Job Role Jobss
Digital Marketing Manager Job Role JobssDigital Marketing Manager Job Role Jobss
Digital Marketing Manager Job Role Jobss
Landge Sachin Kumar
 
Marketing Plan for The Spark Foundation
Marketing Plan for The Spark Foundation Marketing Plan for The Spark Foundation
Marketing Plan for The Spark Foundation
SyrineTouati
 
Top SERP Ranking Factors You Need to Know for 2024 - SkillFloor.pdf
Top SERP Ranking Factors You Need to Know for 2024 - SkillFloor.pdfTop SERP Ranking Factors You Need to Know for 2024 - SkillFloor.pdf
Top SERP Ranking Factors You Need to Know for 2024 - SkillFloor.pdf
pradmin
 
"Crafting Interactive Metaverse Games: Development Solutions"
"Crafting Interactive Metaverse Games: Development Solutions""Crafting Interactive Metaverse Games: Development Solutions"
"Crafting Interactive Metaverse Games: Development Solutions"
Donna Lenk
 
Digital marketing is essential for global reach, engagement, and growth.
Digital marketing is essential for global reach, engagement, and growth.Digital marketing is essential for global reach, engagement, and growth.
Digital marketing is essential for global reach, engagement, and growth.
raqibmifysolutions
 
Unlocking Deliverability with Marketo Engage
Unlocking Deliverability with Marketo EngageUnlocking Deliverability with Marketo Engage
Unlocking Deliverability with Marketo Engage
GNW Consulting
 
Demystifying Attribution Reporting in Marketo Measure
Demystifying Attribution Reporting in Marketo MeasureDemystifying Attribution Reporting in Marketo Measure
Demystifying Attribution Reporting in Marketo Measure
GNW Consulting
 
Do's and Don'ts: How to Pitch Your Press Release to Journalists
Do's and Don'ts: How to Pitch Your Press Release to JournalistsDo's and Don'ts: How to Pitch Your Press Release to Journalists
Do's and Don'ts: How to Pitch Your Press Release to Journalists
Aggregage
 
LinkedIn Marketing Plan for The Sparks Foundation.pdf
LinkedIn Marketing Plan for The Sparks Foundation.pdfLinkedIn Marketing Plan for The Sparks Foundation.pdf
LinkedIn Marketing Plan for The Sparks Foundation.pdf
The Sparks Foundation
 
Online Digital Marketing course intelugu
Online Digital Marketing course inteluguOnline Digital Marketing course intelugu
Online Digital Marketing course intelugu
thotadivya582
 
3 Types Of PR & SEO Funnels That Will Maximize Conversions.pdf
3 Types Of PR & SEO Funnels That Will Maximize Conversions.pdf3 Types Of PR & SEO Funnels That Will Maximize Conversions.pdf
3 Types Of PR & SEO Funnels That Will Maximize Conversions.pdf
search engine jornal
 

Recently uploaded (20)

Advantages of digital marketing course telugu
Advantages of digital marketing course teluguAdvantages of digital marketing course telugu
Advantages of digital marketing course telugu
 
Adult Services Ads _ Adult Search Engine Marketing _ Adult Ads.pdf
Adult Services Ads _ Adult Search Engine Marketing _ Adult Ads.pdfAdult Services Ads _ Adult Search Engine Marketing _ Adult Ads.pdf
Adult Services Ads _ Adult Search Engine Marketing _ Adult Ads.pdf
 
The Key Features of Social Marketing Strategies for Success www.eflot.com.pdf
The Key Features of Social Marketing Strategies for Success www.eflot.com.pdfThe Key Features of Social Marketing Strategies for Success www.eflot.com.pdf
The Key Features of Social Marketing Strategies for Success www.eflot.com.pdf
 
Snapshot of Consumer Behaviors of June 2024-EOLiSurvey (EN).pdf
Snapshot of Consumer Behaviors of June 2024-EOLiSurvey (EN).pdfSnapshot of Consumer Behaviors of June 2024-EOLiSurvey (EN).pdf
Snapshot of Consumer Behaviors of June 2024-EOLiSurvey (EN).pdf
 
CAMPUSEDGE ENETERPRISE RESOURCE MANAGEMENT SOFTWARE
CAMPUSEDGE ENETERPRISE RESOURCE MANAGEMENT SOFTWARECAMPUSEDGE ENETERPRISE RESOURCE MANAGEMENT SOFTWARE
CAMPUSEDGE ENETERPRISE RESOURCE MANAGEMENT SOFTWARE
 
Bumble users can use Al generated photos
Bumble users can use Al generated photosBumble users can use Al generated photos
Bumble users can use Al generated photos
 
Go To Market Strategy - Zig When Others Zag
Go To Market Strategy - Zig When Others ZagGo To Market Strategy - Zig When Others Zag
Go To Market Strategy - Zig When Others Zag
 
MKT460: Strategic Marketing_ SeH_ Kishwan Cookies.pdf
MKT460: Strategic Marketing_ SeH_ Kishwan Cookies.pdfMKT460: Strategic Marketing_ SeH_ Kishwan Cookies.pdf
MKT460: Strategic Marketing_ SeH_ Kishwan Cookies.pdf
 
The Power of Micro Influencers in Influencer Marketing.pptx
The Power of Micro Influencers in Influencer Marketing.pptxThe Power of Micro Influencers in Influencer Marketing.pptx
The Power of Micro Influencers in Influencer Marketing.pptx
 
Digital Marketing Manager Job Role Jobss
Digital Marketing Manager Job Role JobssDigital Marketing Manager Job Role Jobss
Digital Marketing Manager Job Role Jobss
 
Marketing Plan for The Spark Foundation
Marketing Plan for The Spark Foundation Marketing Plan for The Spark Foundation
Marketing Plan for The Spark Foundation
 
Top SERP Ranking Factors You Need to Know for 2024 - SkillFloor.pdf
Top SERP Ranking Factors You Need to Know for 2024 - SkillFloor.pdfTop SERP Ranking Factors You Need to Know for 2024 - SkillFloor.pdf
Top SERP Ranking Factors You Need to Know for 2024 - SkillFloor.pdf
 
"Crafting Interactive Metaverse Games: Development Solutions"
"Crafting Interactive Metaverse Games: Development Solutions""Crafting Interactive Metaverse Games: Development Solutions"
"Crafting Interactive Metaverse Games: Development Solutions"
 
Digital marketing is essential for global reach, engagement, and growth.
Digital marketing is essential for global reach, engagement, and growth.Digital marketing is essential for global reach, engagement, and growth.
Digital marketing is essential for global reach, engagement, and growth.
 
Unlocking Deliverability with Marketo Engage
Unlocking Deliverability with Marketo EngageUnlocking Deliverability with Marketo Engage
Unlocking Deliverability with Marketo Engage
 
Demystifying Attribution Reporting in Marketo Measure
Demystifying Attribution Reporting in Marketo MeasureDemystifying Attribution Reporting in Marketo Measure
Demystifying Attribution Reporting in Marketo Measure
 
Do's and Don'ts: How to Pitch Your Press Release to Journalists
Do's and Don'ts: How to Pitch Your Press Release to JournalistsDo's and Don'ts: How to Pitch Your Press Release to Journalists
Do's and Don'ts: How to Pitch Your Press Release to Journalists
 
LinkedIn Marketing Plan for The Sparks Foundation.pdf
LinkedIn Marketing Plan for The Sparks Foundation.pdfLinkedIn Marketing Plan for The Sparks Foundation.pdf
LinkedIn Marketing Plan for The Sparks Foundation.pdf
 
Online Digital Marketing course intelugu
Online Digital Marketing course inteluguOnline Digital Marketing course intelugu
Online Digital Marketing course intelugu
 
3 Types Of PR & SEO Funnels That Will Maximize Conversions.pdf
3 Types Of PR & SEO Funnels That Will Maximize Conversions.pdf3 Types Of PR & SEO Funnels That Will Maximize Conversions.pdf
3 Types Of PR & SEO Funnels That Will Maximize Conversions.pdf
 

Head Slapping WordPress Security