WordPress is the most widely used self-hosted blogging platform out there which makes WordPress-based blogs especially appealing targets for hackers.
The core WordPress files are updated quite often in order to plug security holes, but it’s easy to miss an upgrade when it becomes available, or simply forget to install it. Missing an update makes your blog an open target because hackers tend to go after blogs that are still running older, insecure versions of WordPress.
And it’s extremely easy for the bad guys to find blogs running older versions of WordPress. Since the WordPress version is listed right in the blog’s source code, all they have to do is search Google for an older version number and Google will comply by listing all the blogs that are running that WordPress version. But there’s an easy way to prevent hackers from finding your blog by using this method. Simply install a great little plugin called Remove My Version! [Read more…]