WordPress 4.7.3 – six security issues has been fixed
This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.7.2 and earlier are affected by six security issues: Cross-site scripting (XSS) via media file metadata. Reported by Chris Andrè Dale, Yorick Koster, and Simon P. Briggs. Control characters can trick [...]
WordPress notifications and alerts made easy
Once you have created an alert for a specific activity, you will receive a notification email or an optional mobile notification for each event. You can create as many alerts as you need. Creating alerts for specific events is easy. You can do this by going to the Activity tab, filtering the log for the activity you wish to [...]
WP Cerber Security 4.3
What’s new Do you want to keep eye on specific activity on your website? I have good news for you! Track them like a PRO. Use powerful subscriptions to get email notifications according to filters for events you have set. Filter out activities that you are interested to monitor and then click Subscribe. Done. Read more. [...]
Do not trust those fake domain confirmation emails
If you ever receive a letter any kind that requests to create, download or install some PHP code on your website you must ignore it.
WP Cerber Security 4.1
New New setting Date format field allows you to specify a desirable format for displaying dates and time. To specify a format use special characters from the list: Recognizable characters in the Date format setting Updates Updated code for ‘registration_errors’ filter to handle errors right way. The French translation has been updated. [...]
How to change date format on Activity page
The plugin has a special setting – Date format. It allows you to specify what format to use to display dates and time on admin pages: Activity log, Traffic Inspector and in notification emails. The setting is located in the Preferences section on the Main settings admin page. If the Date format setting field is empty, the date and [...]
Why it’s important to restrict access to the WP REST API
Do you have a WordPress powered website? Congratulations! You offer a great tool for hackers. It’s called WordPress REST API and it is enabled by default. REST API is a technology that allows performing almost any action or administrative tasks on a website remotely. The WP REST API is enabled by default starting [...]
WP Cerber Security 4.0
New features reCAPTCHA for WooCommerce forms. How to set up reCAPTCHA. IP Access Lists has got support for IP networks in three forms: ability to restrict access with IPv4 ranges, IPv4 CIDR notation and IPv4 subnets: A,B,C has been added. Read more: Access Lists for WordPress. Cerber can automatically detect an IP network of an intruder [...]
WordPress 4.7.1 – eight security issues have been fixed
Time to update! According to reports WordPress 4.7 and earlier are affected by eight security issues and now they are fixed WordPress Security How to limit the number of concurrent user sessions in WordPress Help What is RID and how to use it WordPress Security Managing WordPress application passwords a hassle-free way WordPress Security [...]
WP Cerber Security 3.0
Welcome a new version with reCAPTCHA and WordPress hooks that allow you to fine tune Cerber better Now you can use Google reCAPTCHA to protect WordPress registration form from spam registrations. Also reCAPTCHA available for lost password and login forms. How to setup reCAPTCHA. The registration process, WordPress registration [...]
WP Cerber Security Hooks
A list of WordPress hooks available in WP Cerber version 3.0 and above. It’s handy to use them to customize and fine tune Cerber without coding (e.g. with the jetFlow.io plugin). Filters cerber_msg_reached Applied to the message that is displayed for a user if the user has reached the limit to the number of login attempts. The [...]
How to stop bots and robots with a list of prohibited logins
As you already know, there is a small but powerful feature called a list of prohibited logins/usernames. This is a comma-separated list of usernames you do not want to be used on your website in any circumstances. That’s it? Nope, there is no “just in case” features in the WP Cerber Security plugin. But how [...]
Using IP Access Lists to limit access and protect WordPress
An IP Access List (commonly referred to as ACL) enables you to restricts access to the WordPress admin dashboard, vital WordPress features, protect login and registration forms from accessing by unwanted computers and bots. WP Cerber supports two types of access lists: White IP Access List and Black IP Access List. Both access [...]
Why you need to use Custom login URL for your WordPress
You can create your own Custom login page (rename default wp-login.php) in no time. After you have configured the Custom login URL, the plugin will display wp-login.php page with the newly configured URL.
Why reCAPTCHA does not protect WordPress against bots and brute-force attacks
What is reCAPTCHA, anyway? Google’s reCAPTCHA is a human verification mechanism that created and maintained by Google as a free web service. WP Cerber supports reCAPTCHA for WooCommerce and WordPress forms as an anti-spam feature. Why does reCAPTCHA not protect WordPress from bots and brute-force attacks? It’s [...]