techano
Forum Replies Created
-
Forum: Fixing WordPress
In reply to: All my sites (6) hackedThose two files may be only the tip of the iceberg…
Source:
This campaign is also making use of a number of new backdoor payloads, some are being injected into images to further assist evasion and others are being used to inject new administrator users into the WordPress installs, giving them even more control long term. Some users are clearing infections and getting reinfected within minutes and the reason is because of the complex nature of the payloads and improper cleaning efforts.
Forum: Fixing WordPress
In reply to: Site running slow/completely down after automatic updateI’m getting a similar inexplicable slowness since the past upgrade went through.
On the site in question it’s specifically hitting one page really hard the rest however do crawl compared to the speed we had before. As the system is hosted on a high end platform it’s performance makes no sense.
(and yes NOTHING other than updates has changed)
I see nothing on the database holding it back.
An API token is pretty much identical in function to a password.
We keep passwords hidden – why should API tokens be plainly visible once entered?
They should also be stored in the database encrypted just like passwords as well.