ROBERT JACOBI

Industry Analyst & Strategist

The Wordfence 2020 WordPress Threat Report

I looked and looked because I really wanted to see if this was the first full year WordPress Threat Report – and it looks like it is, it would be interesting if Wordfence could time machine some of this to see year-over-year changes in the volumes and types of WordPress attacks.

Sponsor of the Week: Atarim speeds up web project delivery through visual collaboration – Allowing your team and clients to point at any part of the page to leave a comment. Eliminating annoying back and forth and enabling web work at scale, from small agencies to the largest hosts and enterprises.

This report has some shockingly high numbers! B I L L I O N S!

  • 90 Billion Malicious WordPress Login Attempts
  • 4.3 Billion Vulnerability Exploit Attempts Targeting WordPress

The most interesting and frankly preventable threat outlined in the report is Nulled Plugins: “Overall, the Wordfence scanner found malware originating from a nulled plugin or theme on 206,000 sites, accounting for over 17% of all infected sites. Nulled plugins and themes are pirated copies of premium plugins and themes with their license checking features disabled or removed, which typically contain backdoor functionality.”

© 2023 Warbi, Inc. and Robert Jacobi
All rights reserved.