How to protect WordPress against CVE-2018-6389 DoS attacks
We should say that this is not a critical vulnerability and doesn’t allow a hacker to break into a victim website. It’s rather a design flaw that allows anyone to put a WordPress powered website to its knees easily. Bad actors can use it to bring your online store down. The attack can be initiated from any computer by anyone. No special [...]
WP Cerber Security 6.2
New features Protection against a denial of service (DoS) attack that exploits recently discovered vulnerability (CVE-2018-6389). It’s not a critical vulnerability and doesn’t allow a hacker to break into a victim website. It’s rather a flaw that allows anyone to put a WordPress powered website to its knees easily. Bad [...]
Traffic Logging for WordPress
WP Cerber’s Traffic Inspector not only analyzes and blocks suspicious HTTP requests but also can optionally log them with request details, enabling you to inspect them manually. It uses a thoroughly designed high-performance logging engine. All logged requests are displayed on the Live Traffic page. The logging settings [...]
Development version 6.1.3
Improvements The Traffic Inspector algorithm detects malformed and double extensions like .php.jpg more precisely. Access Lists now accept IPv6 address in any form. You can enter a shortened IPv6 (short form) or a full IPv6. A full IPv6 will be shortened to the short IPv6 address representation. Bugs fixed If REST API is blocked, a [...]
WP Cerber Security 6.1
In case you missed: version 6.0 announcement. Improvements Traffic Inspector has got a Request White List setting. To exclude a particular request from inspection specify a request string without the website domain and query string (GET parameters). Read more. An Activity filter has been added to the Advanced search form on the Traffic [...]
Traffic Inspector in a nutshell
Traffic Inspector analyzes incoming HTTP requests, recognizes suspicious, and blocks them before they can harm your website. This security algorithm is enabled by default and in the vast majority of cases requires no configuration. When Traffic Inspector is enabled, the firewall analyzes and blocks malicious and potentially [...]
WP Cerber Security 6.0
New features Hacker attacks on websites get stronger and smarter because fast-growing technologies create new opportunities for hackers and cybercriminals. We cannot ignore those facts and that’s the reason we’ve implemented a new feature: Traffic Inspector. It’s a specialized request inspection algorithm that acts as additional [...]
Development version 5.9.9
New features Fast-growing technologies create new opportunities for hackers and cybercriminals. Hacker attacks on websites get stronger and smarter. We cannot ignore those facts and that’s the reason we’ve implemented a new feature: Traffic Inspector. It’s a specialized request inspection algorithm. Since v 6.0 WP Cerber Security [...]
WP Cerber Security 5.9
Improvements Now you can add comments for new entries in the access lists Improved compatibility with exotic hosting environments: now the plugin handles URLs with the MultiViews server option enabled. If this option is enabled and the server receives a request for /something and this something doesn’t exist, the server tries to [...]
Development version 5.8.8
While we are working on the next version of Cerber Security, we are glad to announce a new development version of the plugin. Give it a shot! Improvements and updates Now you can add comments for entries in the access lists Improved compatibility with caching plugins Code performance optimizations Bugs fixed The plugin logs a logout [...]
Cerber Security Professional
Upgrading to Cerber Security Pro not only unlocks the features below but puts you on the upgrade path for unbeatable security features that we’re excited to share in the near future. As of now, our customers get these powerful features and abilities: Cloud-based protection with Global Black List maintained by Cerber Lab. Our cloud [...]
WP Cerber Security 5.8.6
New features Now you can use regular expressions (REGEX) in the list of prohibited usernames. Specify as many patterns as you need. To specify a REGEX pattern wrap a pattern in two forward slashes like /admin.*/. All comparisons are case-insensitive. Improvements and updates A new checkbox on the Notification tab lets you enable/disable [...]
WordPress 4.9.1 Security and Maintenance Release
WordPress 4.9.1 is now available. This is a security and maintenance release for all versions since WordPress 3.7. We strongly encourage you to update your sites immediately.
Development version 5.8.1
Improvements and updates A new setting to specify email addresses for sending report. See the Notification admin page. Bugs fixed The color picker on WordPress Customizer might not work. Download this version: https://wpcerber.com/development-version/ WordPress Security WP Cerber Bug Bounty Program WordPress Security Managing [...]
WP Cerber Security 5.8
New features Weekly reports. Now the plugin will send a brief performance report (activity for past seven days, antispam performance) to specified email addresses. Weekly reports are sent once a week. Set desired reporting time on the Notification admin page. Improvements and updates REST API: the deprecated rest_enabled filter is used [...]