Alert: If you’re running WordPress, it’s time to update

wordpress_dosWordPress Alert: Users running WordPress versions 3.5-3.9 and Drupal versions 6.x-7.x are vulnerable to a newly discovered denial of service attack which can render both website and web server completely inaccessible.

For comprehensive security, immediate updates are recommended.

The vulnerability, which uses what’s called an XML Quadratic Blowup Attack, was discovered by security researcher Nir Goldshlager of both Break Security and Salesforce.com.

Goldshlager has prepared a technical analysis of the vulnerability here. For a less technical overview, readers can also see his collaborative post at Mashable. Most importantly, though, make sure those updates are applied as soon as possible!

Protect your device with Emsisoft Anti-Malware.

Did your antivirus let you down? We won’t. Download your free trial of Emsisoft Anti-Malware and see for yourself. Start free trial

Have a great (DoS-Free) day!

Senan Conrad

Senan Conrad

As a cybersecurity enthusiast, Senan specializes in giving readers insight into the ever-changing world of malware, and the ransomware scene in particular. When he's not tapping away at his keyboard, you can catch Senan drinking a good coffee or tinkering in his workshop.

What to read next