Do not let your WordPress blog be a launchpad for malware.

By Jed | Published: April 19, 2012

According to this article, you shouldn’t install the new WordPress ToolsPack Plugin.

It just installs a small php code that will allow your site to be backdoored and used as a redirect to an attack site.

Best practices for a WordPress blog – do not install plugins that you do not need, period. Other than being a security risk, even if you have legitimate WP plugins, having several of them which only offers minimal functionality will add up to your blog’s load time thereby slowing it down.

Maybe the WordPress guys can use security certificates to prevent the proliferation of useless/trojaned plugins.

This entry was posted in Computer/IT, Tech. Bookmark the permalink. Post a comment or leave a trackback: Trackback URL.

One Comment

  1. TechAmy
    Posted August 1, 2012 at 13:53 | Permalink

    also enrich the security by changing Admin as user name, removing script that displays the wordpress version and change the secret keys

    Reply

Post a Comment

Your email is never published nor shared. Required fields are marked *

Connect with Facebook

*
*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>