You could consider signature-based analysis to be like a policeman running the plates of every car in a parking lot against the police department’s database of stolen vehicles. While this may be an effective method for finding stolen vehicles, if the license plate on the car has been changed or obscured, the car will most likely be overlooked. Keeping with this analogy, behavioral analysis would be the detective.
Category: WordPress security Page 12 of 16
Back in February, a colleague and I delivered a talk on website security at WordCamp Miami. Among the many great questions we received both during the talk’s Q&A and at our sponsor booth, one common theme kept reoccurring from attendees: How does malware detection really work?
If you want to check out our WordCamp Miami talk, “Beyond the Basics: Building Security into Your Development Projects,” and the corresponding slides are available online.
…for all WordPressers!
At 2,200 attendees, WordCamp Europe (#WCEU) 2016 was officially the largest WordCamp ever held. Tickets sold out over six months in advance, prompting organizers to quickly allocate additional tickets and arrange additional presentation space.
WCEU 2016 was hosted in the MuseumsQuartier of beautiful Vienna, consisting of three very large tracks and the sponsor hall, where the SiteLock booth could be found front and center. From a total 220 applicants, 75 speakers were selected to present at WCEU on subjects ranging from the REST API to figuratively “herding cats.”
In Part Three of our firewall series, we’re drilling down into some of the mechanisms used in firewalls, namely the progression from stateless to stateful packet filtering. First, packet filtering is the action of inspecting the traffic traversing the firewall’s network to determine if the traffic is meeting the firewall’s security policy. Traffic conforming to the firewall’s security policy is allowed to proceed, while traffic not meeting the policy (e.g. a malicious attempt) is blocked.
WordCamps represent the very pulse of the WordPress community, brought to life with the enthusiasm and contributions of hundreds, if not thousands, of WordPress enthusiasts. They are becoming more and more prevalent throughout the United States and around the globe. With so much excitement and growth, we wanted to take a look back at where WordCamps started and why they have become such a strong force in the WordPress community.
A Brief History
The first WordCamp was the creation of Automattic Founder and CEO, Matt Mullenweg.
My last WordCamp for Spring 2016 was the in the “BBQ Capital of the World,” Kansas City, Missouri (#WCKC). WordCamp Kansas City is one of the few WordCamps that spans a three-day period, starting Friday morning. We jumped straight into sessions by noon on Friday and kept it going strong all the way through Sunday afternoon, with a cozy afterparty-style meet-up to conclude each day. Both the Friday and Saturday sessions took place at the Kauffman Conference Center, while Sunday’s sessions were held at the Sprint Accelerator workspace.
If you live in Cleveland, Akron, Lorraine, Canton, Youngstown or anywhere in-between in Ohio you’re in the heart of a thriving WordPress community. WordCamp NEO was held this past weekend at the Kent State University Hotel and Conference Center. It was a great 2-day event with many important takeaways.
SiteLock was a sponsor and I had some great conversations with many of our fellow community members. In addition to sharing website security tips, we also learned a lot from everyone else attending.
Part Two: White Box Testing
In case you missed it, we spoke about Black Box testing in the last part of this series. Today, I’m going to go over Black Box testing’s counterpart, White Box testing. In terms of WordPress website security, White Box testing is the practice of testing the code running behind the scenes from the inside-out. Internal testing can be accomplished through use of various tools to seek out any vulnerabilities that may exist. White Box testing is typically executed in the form of Static Application Security Testing (SAST).
We’re packing our bags and getting ready to head out to the beautiful northeast for this year’s WordCamp Boston. Join us July 23-24 at the George Sherman Union for a jam-packed weekend of networking, inspiring talks and of course, great WordPress swag!
Keep an eye out for our friendly WordPress Evangelist Adam W. Warner, he’ll be holding down our sponsor table!