Threat research, walkthroughs of real-world WordPress compromises (anonymised), plain-English explainers for site owners, and field notes from the RedSecLabs team. New posts roughly fortnightly.
WordPress powers 43% of all websites—making it the #1 target for cybercriminals. 7,966 new vulnerabilities were discovered in 2025 alone, a 34%…
Next-generation plugin uses LLM-assisted reasoning to detect sophisticated backdoors and hidden malware that traditional security tools miss Guardian Gaze, a…
Most WordPress sites don’t get hacked because someone targeted them personally. They get compromised because security was ignored until it…
WordPress security often gets framed as an all-or-nothing choice. Either you lock everything down with complex tools, or you do…
One email per post. Threat walkthroughs, agency playbooks, and product updates. Unsubscribe anytime.