Secure IT Foundation

Posts Tagged ‘WordPress Hacked

We often get asked why we don’t run our websites from our own webserver. The announcement that WordPress has been hacked illustrates why we don’t!

If this had been one of our own servers compromised, rather than WordPress, a website hosted completely separately then then we could potentially jeopardise our ongoing security research, and for a commercial business like the shop in Rotterdam even customer information could have been put at risk.

Risk of that order is unacceptable to us, so we use the free hosting service from WordPress and only ever upload information that is intended to be in the public domain. This physical segregation of information helps maintain our defence in depth without expensive computerised controls.

Currently the only impact from the WordPress hack is that we had to change the passwords, which we do a regular basis anyway…