Security

A deep dive into how WordPress’s wp_rand() works, what a CSPRNG is, and why some warnings about it are misplaced.

What started as a polite “sorry, too far” turned into a week of planes, panels and Poland. From WPLDN to LoopConf, then on to WordCamp Gdynia, it turned out getting to Poland was quicker than getting to London. Along the way I found myself talking security, debating AI, and discovering the joys (and delays) of Luton Airport.

Is your WordPress business ready for the UK’s Cyber Security Bill? From risk assessments to vulnerability reporting, this upcoming legislation could change how developers and agencies operate. Here’s what you need to know and why it matters

Are WordPress Automatic updates with multistage testing, backups, and alerts more reliable than manual updates? Let’s discuss!

Are you sitting comfortably then join me for a Scary WordPress Security story.
Follow the woes of Joe, as a meme generator take out an entire hosting company.
Would you get caught out too?

Ever had that unsettling feeling that something’s not right, but can’t put your finger on it? Discover how Tim, worked through the case of a compromised site.

Securing a web app admin area, by combining Tailscale with MagicDNS split DNS feature, Systemd-resolved and Caddy.

Automatic updates don’t need to be feared both in terms of their reliability and their jobs they are a tool and one you should embrace.

Tim takes a look at why migrating mail providers are always interesting even if you are a supposeded “pro”

Tim takes a look at the recent Ransomware attack on a popular host and asks could it happen to you? Are you prepared and what steps can you take to mitigate such thing?

Tim introduces his latest plugin he has been working on, WP User Sentry and explains why he felt there was a need for such a plugin in the market.

Backing up shouldn’t just be about security, Tim guides us through how to backup, what to backup, when to backup and with what on a WordPress site.