We use cookies to understand how you interact with our site, to personalize and streamline your experience, and to tailor advertising. By continuing to use our site, you accept our use of cookies and accept our Privacy Policy.
Contact Us
Contact Us
Sign in
Sign in
Nexcess
Nexcess


Power up your sites and stores with custom-built technology designed to make every aspect of the digital commerce experience better. Make your digital commerce experience better with Nexcess.


OneLogin Breach Could Put WordPress Single Sign-On Users At Risk

OneLogin, a popular single sign-on service, has announced that sensitive data was leaked from its infrastructure during an attack. OneLogin, which is used on many WordPress sites and Magento eCommerce stores, has confirmed that the leaked data could include user information, passwords, API keys, secure notes and other data that could be used compromise user […]

Does It Really Matter Where You Host WordPress? – A Response

The first thing a prospective WordPress site owner has to decide is where to host their site. There is plenty of advice on the web about how to choose a hosting provider for WordPress. As you might expect, some of that advice is accurate and worth reading, and some of it is so misleading it […]

What Is SEO Spam Malware And How Can It Hurt Your WordPress Site?

Black Hat SEOs and hackers are keen to find resources to exploit. A badly secured WordPress site makes a juicy target, and criminals use such sites for nefarious activities ranging from botnets to ransomware distribution. Of late, there has been a rise in a different sort of attack: SEO Spam Malware. What Is SEO Spam? […]

XSS Vulnerabilities Have Been Found In The Avada WordPress Theme

It has recently come to light that several critical vulnerabilities were fixed in the Avada theme in April, although ThemeFusion, the developers of the theme didn’t widely announce the patched release until several weeks later. If you use the Avada WordPress theme on your site, you should upgrade to Avada 5.1.5 as soon as possible. […]

WordPress Joins HackerOne And Introduces Bug Bounties

WordPress has announced that it’s joined HackerOne, a platform for researchers to responsibly disclose security vulnerabilities. HackerOne provides a consistent interface for reporting vulnerabilities and reduces the amount of time developers waste responding to common issues, freeing them to focus on security improvements. The HackerOne platform is used by many large organizations for vulnerability reporting, […]

WordPress 4.8 Will Arrive On June 8th

The WordPress development team has announced that WordPress 4.8 will be released on June 8th. WordPress 4.8 will include editing enhancements with a focus on laying the groundwork for an improved text editing experience, but it won’t include the full version of Gutenberg, WordPress’s experimental editor, which is still being developed. The release is on […]

The WordPress Rest API And The JavaScript Ecosystem

Until relatively recently, if you wanted to build a WordPress theme, you had to use PHP. With the introduction of the REST API, that’s no longer the case. It’s possible to build integrations with WordPress in any language. As Matt Mullenweg has pointed out on several occasions, a leading motivation for the introduction of the […]

WordPress 4.8 Will Not Support Internet Explorer 8, 9, or 10

Matt Mullenweg has announced that from WordPress 4.8, which is expected to be released later this year, WordPress will no longer support Internet Explorer versions older than IE 11. Microsoft only supports IE 11, but WordPress supports IE 8, 9, and 10 because a small proportion of its users remain on older versions. In March […]

Fake SEO Plugin Targets WordPress Sites

WP-Base-SEO is a fake WordPress plugin that security researchers have found installed on over 4000 WordPress sites. WP-Base-SEO is a copy of a legitimate WordPress SEO plugin with added malicious code so the attacker can control infected sites. When a hacker compromises a WordPress site, standard operating procedure is to inject malicious PHP or JavaScript […]