{"id":20532,"date":"2023-05-01T13:58:03","date_gmt":"2023-05-01T12:58:03","guid":{"rendered":"https:\/\/wpbeveiligen.nl\/?p=20532"},"modified":"2023-05-01T13:58:03","modified_gmt":"2023-05-01T12:58:03","slug":"are-attacks-on-wordpress-websites-a-thing-of-the-past","status":"publish","type":"post","link":"https:\/\/wpbeveiligen.nl\/en\/are-attacks-on-wordpress-websites-a-thing-of-the-past\/","title":{"rendered":"Are attacks on WordPress websites a thing of the past?"},"content":{"rendered":"<p><strong>Every WordPress website is hosted by a web hosting company, a company with several server security specialists. Large web hosts employ IT professionals with 30-50 years of cybersecurity experience.<\/strong><\/p>\n<p>Many people with a WordPress website therefore assume that it is within the capabilities &#8211; and even responsibilities &#8211; of the web hoster to keep the website hack &amp; malware free.<\/p>\n<p>After all, the attacks are done on the website towards the server right? And malware + hacks eventually end up on the hoster&#8217;s server. Right?<\/p>\n<p>In the video below (english), Mark Maunder, the Founder &amp; CEO of WordFence &#8211; 1 of the largest WordPress antivirus services &#8211; explains that because of connection encryption (TLS), it is hardly possible for hosting companies to identify and\/or directly stop attacks. Only the elaboration can be identified. But in many cases that is already too late.<\/p>\n<p><iframe loading=\"lazy\" title=\"Introducing Wordfence Intelligence\" src=\"https:\/\/player.vimeo.com\/video\/730381343?dnt=1&amp;app_id=122963\" width=\"500\" height=\"281\" frameborder=\"0\" allow=\"autoplay; fullscreen; picture-in-picture; clipboard-write\"><\/iframe><\/p>\n<p>ance attacks are constantly changing &amp; the elaboration (payload, hack, malware) are constantly changing &amp; there is still a piece of customer privacy and self-determination over the website &amp; the server is made for performing tasks and not blocking&#8230; it is not feasible for web hosts to recognize, block, and remove all malware.<\/p>\n<p>For that reason, as a WordPress security specialist, I still have work to do \ud83d\ude09<\/p>\n<p>But WordFence has now launched an interesting service.<\/p>\n<h2>WordFence Intelligence<\/h2>\n<p>WordFence&#8217;s security experts see millions of attacks, and their effects, through the WordFence plugin.<\/p>\n<p>Based on that information, they can fairly quickly determine which hacks &amp; IP addresses come from hacked or rogue servers. They are going to make that information of those addresses and hacks available to web hosts via a <strong>WordFence Intelligence API<\/strong>.<\/p>\n<p>Will that be a solution that will prevent all attacks and malware on web hosts&#8217; servers in the future?<\/p>\n<p>There will always be a 30-60 minute &#8220;wait time&#8221; between attacks, their processing and blacklisting\/information.<\/p>\n<p>So 100% protection cannot be provided by this tool for web hosting companies either, but it can address the biggest dangers. It can stop thousands of Web sites from being attacked!<\/p>\n<p>And better yet, that thousands of requests on the server via changing ip&#8217;s are blocked faster which benefits server capacity and reduces power costs.<\/p>\n<p>So a good development!<\/p>\n<p>But who knows, maybe we will gradually move toward a time when massive attacks on millions of websites will become a thing of the past.<\/p>\n<p>Until then, as a website owner, make sure that your website is at least protected with an antivirus plug-in with firewall, or better yet, have your website protected!<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Every WordPress website is hosted by a web hosting company, a company with several server security specialists. Large web hosts employ IT professionals with 30-50 years of cybersecurity experience. Many people with a WordPress website therefore assume that it is within the capabilities &#8211; and even responsibilities &#8211; of the web hoster to keep the [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":19508,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[167],"tags":[],"_links":{"self":[{"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/posts\/20532"}],"collection":[{"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/comments?post=20532"}],"version-history":[{"count":0,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/posts\/20532\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/media\/19508"}],"wp:attachment":[{"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/media?parent=20532"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/categories?post=20532"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/tags?post=20532"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}