C99 Webshell attacks on WordPress are increasing. What is a webshell and how can you prevent it? Read the article for more details. One recommendation is that you disable base64_decode functionality via your php.ini file: find the line: 'disable_functions =' and change it to 'disable_functions = eval, base64_decode, gzinflate'. It's also a good Idea to use the Wordfence plugin to scan your WP install on regular basis. https://securityintelligence.com/got-wordpress-php-c99-webshell-attacks-increasing/
IBM MSS X-Force researchers found that C99 webshell attacks are increasing, particularly against content management systems such as WordPress.
Originally posted at The WP Guy - WordPress Web Design
great
ReplyDelete