As many of you know, the difference between "http" and "https", is that "https" instructs the browser to initate an encrypted session with the web server before sending any data.

I know I tend not to use https more out of laziness than anything else, however, once you’ve taken the effort to set it up, it’s […]

This time we are going to use our research to determine what plugins WordPress bloggers favour over the rest!

Sometimes security research allows us more then just doom and gloom. This table will show us what plugins WordPress blogs use most from the results of wp-scanner. This may be useful for the rest of us, as […]

Please note that many of the themes mentioned here do have new releases of their themes that address these issues, so please check your version!

In June we wrote an article on common WordPress template flaws and thought we’d follow up on this.

The following results were taken from the latest 1000 scanned blogs (see wp-scanner), and […]

If you are like many other WordPress users and use the default admin user account to login and manage your blog, then you are doing something wrong. With power comes grave responsibility.

I remember when I first got into Linux. I heard loads of people shout across the net, "Dont use the root account (superuser account) […]

WordPress has a really cool export and export features to move you blog. I used them over the weekend and found the default password "changeme" very cute.

If you ever need to move your blog data from one site to another I recommend two options:

wp-db-backup plugin or
WordPress’s import, export options which are available via wp-admin

When importing […]