This week, Jetpack Scan flagged the license file of a premium extension, and the customer reached out to ask us for more information about it. So I put my detective hat on to investigate.
It is not unusual to stumble upon suspicious code that only ended up being an overprotective developer trying to hide code through common obfuscation methods. This is even more common when analyzing license management code. But in this case, it turned out to be something a bit more sinister.
Continue reading → Malware using the REST API for Remote Code Execution
When you sell online, the tools that you use are just as important as the products you create. Choose the right ones and you’ll be more successful, more efficient, and less stressed.
One of the biggest benefits of WordPress is its customizability — you can easily use free or premium plugins to add just about any functionality you can imagine. But the number of choices can become overwhelming. We’ve made this easier by putting together a list of the types of plugins you may need to grow and streamline your business.
Continue reading → The Best WordPress eCommerce Plugin (+ 15 Plugins to Extend Your Store)
When you own a restaurant, your time is both extremely valuable and extremely limited. Between managing day-to-day operations and new food innovations, you probably don’t have a lot of extra time to invest in your website.
But a high-quality site is critical for success. That’s why choosing the right tools is so important. We’ve put together a list of the best WordPress plugins for restaurants that save you time and help with everything from marketing and security to management.
Continue reading → The 12 Best WordPress Plugins for Restaurants
You’ve heard of a super fan — someone who’s a loyal, excited supporter of a celebrity, sports team, cause, or something in pop culture. Mark-Andrew Nordstrom is the epitome of a super fan for “open source.” And WordPress and Jetpack are Mark-Andrew’s ideal manifestation of the concept. Though, he’d disagree with being called a super fan because of his individualistic, independent, free-spirited nature.
When we first encountered Mark-Andrew, we had caught word of a man living a simple, nomadic lifestyle who was spreading the word of open source.
You could call him a traveling salesperson, but he doesn’t do it for profit. He’s not sanctioned. Nobody asked him to do it. But there he is — showing up again and again — from places all around the world. We finally caught up with him and conducted an interview from a hostel in San Diego.
For him, the world is his home and skating is his passion. He was arrested for the first time at the age of 12 for doing what he loves.
After helping take care of his grandparents at the end of their lives, he took off to explore the world and skate full time. His possessions are little more than the things in his backpack. And with the exception of the ring he wears on his finger — given to him by his mother — he has no loyalty to worldly objects. He doesn’t even have loyalty to the sites he builds on WordPress, happily scrapping them and starting them over on a whim any time he gets the urge to create something new.
Continue reading → Meet the Skateboarding Nomad Living the Open Source Life
The internet can seem like everything’s just floating out in space, but when you get down to the nitty gritty, your WordPress website files actually have to physically live somewhere. A hosting company’s job is to store your files and database so that your site can be accessed by anyone from any location around the world.
Ideally, your website can live happily at your hosting company forever and you never have to give the physical files any thought. But there may come a time when you want to move your website. Let’s take a look at a few reasons you might need to migrate to a new host and how you can do this easily.
Continue reading → Should You Migrate Your WordPress Website?
While investigating a security advisory about an arbitrary role change/privilege escalation issue in the HM Multiple Roles WordPress plugin, the Jetpack Scan team discovered that the fix was incomplete and left the plugin still vulnerable.
The issue is fully fixed in version 1.3 of the plugin, and we advise any sites using any earlier version of this plugin to update as soon as possible.
Continue reading → Arbitrary Role Change/Privilege Escalation in HM Multiple Roles WordPress plugin
Security is absolutely imperative whether you own a blog, small business site, or eCommerce store. After all, if your site is ever hacked, you risk damaging your reputation, losing your files and database, hurting your SEO rankings, and turning personal customer and visitor data over to hackers.
As with many things in life, prevention is much better than treatment. And, thankfully, WordPress makes it easy to secure your site and prevent a hack.
We’re going to take an in-depth look at 12 of the best WordPress security plugins, compare them in a variety of areas, and help you choose the best plugin for your particular site. Plus, we’ll answer some common WordPress security questions.
Continue reading → Choosing the Best WordPress Security Plugin: Top 12 Plugins Compared
To celebrate our 10th birthday earlier this year, we launched Jetpack Turns 10, a microsite to highlight how Jetpack has helped millions of people speed up and secure their WordPress sites.
In this release, we have shipped several under-the-hood improvements for an enhanced Jetpack experience.
Continue reading → Jetpack 10.0 – Behind-the-scenes improvements for your site
Posted in Releases