Yeah. We see a lot of that sh*t where people sold their mediocre skills. Mostly when it got hacked.

Habt ihr schon ne Backup-Strategie für eure WordPress-Seite? Falls nicht: heute um 19 Uhr beim WordPress Meetup Bonn (Online) vorbeischauen. Die haben heute das Thema Backups mit Daniel Hüsken meetup.com/de-DE/WordPres… #WPBN

Where's the comparable statement from the WordPress security team? And what about Autoloader in PHP? Do we have any corpses in the basement?

Das ist der Grund weshalb man kein Plugin - egal welches - einsetzt um Code in WordPress Webseiten zu injizieren. Im Zweifel macht es das nämlich auch für Code, den man gar nicht haben will. Childtheme und Anpassungen in der functions.php sind die Lösung!

My mom is looking for her friend Maria from Ukraine. I have told her it is impossible to find her having just a picture. She has asked me to try it because she believes miracles happen sometimes. Maria left Orihuela (Alicante) 12 years ago. Twitter, please do magic!

Email marketing firm MailChimp disclosed on Sunday that they had been hit by hackers who gained access to internal customer support and account management tools to steal audience data and conduct phishing attacks. #cybersecurity #databreach #phishing zcu.io/AWmK

Hey #WCNL folks WordCamp Nederland! I'm taking screenshots for my talk on website testing: netherlands.wordcamp.org/2022/session/q… Which website should I use for it? Preferably a non-profit/charity org interested in such feedback. RT appreciated! Thanks.

Every single WordPress instance we maintain for our customers - even if far less critical - is better secured than this. Scary to read thread 🧵

Two days to go … - still waiting for WP 6.1.2 wpscan.com/vulnerability/…

State of WP Security 2022: Two percent of WordPress plugins are responsible for 99% of the vulnerabilities. ithemes.com/blog/the-2022-…

In case you missed it... #WordPress v6.2.1 introduces a bug (or...solution?) that breaks shortcodes in templates. 👇🏼 wordpress.org/support/topic/… You can read more of the back-and-forth behind the decision here: core.trac.wordpress.org/ticket/58333 Just a heads up before updating sites! 😊

I could view such fireworks all day long 🎇 WordPress? Sicher!

Here is the thing, Matt Mullenweg. You seem to be frustrated by people’s feelings about #WordPress dotcom cloning the plugin repo and ranking higher than #WordPress dotorg because because of how much a8c contribute$ to the project. Is that correct?

Today, I helped set up a new #WordPress site with a pre-made Elementor theme that was purchased from Themeforest. It’s very well designed for the specific purpose, so it saved a lot of time, but… 1/4

My kind of humor 😂

TIL: A default content security policy (CSP) does not allow inline CSS. You can either disable the safety net (and allow "unsafe-inline“) or you break e.g. your critical CSS. Hashes or nonces would be possible but only work, if this is handled together … Thoughts? (RT helps!)

Where's the "skip" button on SolidWP Security initial install wizard? I know what to do or have sites that don't fit into either of the given choices (and it's not clear what which option results in which settings). If you sell "Pro" consider a pro on the other end.

Der Ausschluss vom WordPress Repository von WP Engine und schlimmer deren Kunden ist absolut unverantwortlich. Wer davon betroffen ist, dem helfen wir bei anstehenden Updates pro Bono.