This comprehensive conversation delves into the world of WordPress security through the lens of Tom Raef, a seasoned security expert with a history dating back to the inception of personal computing. The podcast covers Tom's journey into website security, emphasizing his manual approach to cleaning infected websites and the evolution towards automation to enhance efficiency.
The discussion pivots to the most common hacking methods, including the surprising predominance of stolen session cookies over more traditional vulnerabilities like outdated plugins.
Tom provides a deep dive into how hackers leverage session cookies to bypass security measures like 2FA, offering insights into the mechanics behind these attacks and strategies for prevention. Additionally, the conversation explores the broader landscape of web security, touching on various attack vectors and the importance of comprehensive, layered security strategies to protect against the increasingly sophisticated techniques employed by hackers.
This episode is a treasure trove of knowledge for anyone interested in the nuances of web and WordPress security, packed with expert insights and practical advice for safeguarding websites.
Learn all about how Juliette Reinders Folmer uses 1600 testing scenarios for just one little thing inside WordPress. Juliette is one of the big...
In this episode of Within WordPress, we sit down with Marc Benzakein, a familiar name to many in the WordPress community. Marc and I...
In this podcast, I interview Joshua Wold, a designer who focuses on helping companies improve their onboarding in WordPress. Joshua explains that onboarding is...