Wordfence Security
Just wondering who is using this plug in. I received an email today from them. See below.
Our threat intelligence team has identified a large botnet of over 20,000 infected WordPress sites that is centrally controlled. It is being used to attack WordPress sites.
Today we have published in-depth research on the attack campaign that includes details of the botnet, how the attacker is hiding their operations using a huge network of proxy servers, their command and control infrastructure and more.
Wordfence already protects you from this threat via our IP blacklist, firewall and by detecting the code used to infect sites participating in the botnet.
You can find the full post on the official Wordfence blog…
Recent Comments
13
I have not seen anything regarding all the functionality of SiteProtect. The focus has been preventing spam comments which may contain malware, viruses, etc.
As a former WordFence user, I know that WF does more than just prevent spam comments. Their scanner also checks core files, themes, and plugins for malware, bad URLs, backdoors, SEO spam, malicious redirects and code injections.
I recently deleted a WA-hosted website because it was hacked and malware infected. The hackers included a redirect to a click farm (which was a blacklisted site).
The hack may have been a result of a bad plug-in. Site support was not clear as to how my site was hacked. So I don't know if the vulnerability has been eliminated on my other sites.
SiteProtect eliminated the need for spam-blocking plugins like Akismet or WP Spamshield. Now I am not uncertain as to whether we need a (better) security plugin.
I never completed the installation or activated the WordFence plugin. Now that I see Kyle's response to your post, I will delete WordFence. Thanks Mary Ann!
Colleen
There must have been a reason why I had it. Maybe I saw a posting on here somewhere. Anyway, happily glad to get rid of a plugin I don't need :).
Same here!
Ps. MaryAnn: I do not think you should remove it, as it prompted Kyle's response. So personally, thank you for indirectly letting me know something useful.
See more comments
You do not need this plug being a member here at WA, it is completely redundant and will be unnecessary load on your website.
You have security and prevention form botnet here within the SiteProtect platform, which is included with all websites. It is done at the server level, not at the plugin level, so it creates far more security.
Security plugins, as strange as it sounds, can actually create security vulnerabilities on your website and I DO NOT recommend them.
You are well covered using the hosting here at WA and with SiteProtect.
Thank you Kyle. I appreciate your prompt response to this!
Perhaps I should remove the post?
Mary Ann
This is helpful to know that we do not need any security plugins. Yay! Thank you, Kyle!
Colleen
Leave it up Mary Ann. Some people may not be online and it will direct them to Kyle's answer. That is how I just found it. Have a great weekend.
Mark
This post was very helpful to me, so great question :)