Update: A week after the disclosure WordPress has released a patch in 4.9.7 to address this security issue A recently disclosed vulnerability by RIPSTech shows how an attacker could gain full access to a WordPress website. While it does require an authenticated user to carry out the attack it would be possible to take full Read the full article…
Blog
Chrome 66 Released – First stage in distrusting of Symantec certs.
Chrome 66 is released today and the stable version will be rolling out to all users. This version comes with new security features including the first step in Chrome distrusting Symantec SSL certificates. Chrome to distrust Symantec certificates issued before June 2016 Chrome will no longer trust Symantec SSL certs. issued before June 2016. This Read the full article…
File integrity checks for plugins
Hosting your site on WP Charged is now even more secure. We’re proud to announce a new security enhancement for WP Charged customers. All WordPress plugins installed from the official plugin repository will have their files scanned and verified against WordPress.org’s version of the files. This means any malicious changes to plugins can be identified Read the full article…
Yoast 7.0.2 performance hit
Our monitoring systems have identified a performance hit when upgrading to the latest version of the WordPress SEO plugin by Yoast. Further testing shows the 7.0.2 version increases the time to first byte by 50%, with reports of others experiencing similar slow downs when upgrading from 7.0.1 to 7.0.2. We recommend avoiding upgrading to the Read the full article…
PHP7.2 Released
PHP7.2 is officially released and is now available on WP Charged. PHP7.2 comes with further performance and security features. Although the performance leap isn’t as big when moving from PHP5.6 to PHP7 the 7 branch still continues to improve performance wise. Performance tests by Kinsta show PHP 7.2 out performing both HHVM and PHP7.1 and Read the full article…