Why Your WordPress Site Is Never Really Secure

Update: On Monday, December 18, 2017, there was a massive distributed brute force attack targeting WordPress sites. The attack used a large number of attacking IPs where each IP generated a huge number of these attacks. It is the largest, most aggressive breach to date, with over 14.1 million brute force attempts per hour.


WordPress security solutions are mere bandaids, subject to more attacks in the future.

Attacks like these are why your Wordpress is never really secure. With more than 87 million sites worldwide, WordPress is the leading CMS of the internet. But being a leader in your space doesn't come without its pitfalls. WordPress's massive site structure has opened them up to many security threats since the software's 2003 launch.

Another severe hacking event shocked WP users in February 2017, when attackers penetrated 1.5 million sites thanks to a loophole within the WordPress REST API. The REST API was touted as a connector to enhance communication with other web programs, revolutionizing WP's own outdated API. A vulnerability in the REST API allowed hackers to infiltrate nearly 2 million sites — compromising up to 350,000 sites in one campaign alone.

The only way WordPress core developers can patch significant vulnerabilities within their software is to deploy patches in the form of product updates. WP has deployed 238 releases over the past 14 years, and many of them have been to fix security problems.

Still, many site developers disable the automatic update feature because it could impact their site's design and function. About 5% of WordPress sites are not updated with the latest, most secure version.

Securing your WordPress site is costly, too. Simply purchasing a WordPress site isn't enough to protect your data. Users have to buy WordPress security plugins and installs from third-party companies to not only protect their site, but stay updated on new vulnerabilities.

One of the primary reasons WordPress is open to security threats is because it operates as a decentralized CMS. That means each site — all 87M+ of them — has to be updated individually. So every time there is a security threat or a big fix, those updates are not completed on a set timeline. The time it takes for your site to be updated could be catastrophic.

RebelMouse is a centralized CMS, which means all of our updates are quickly deployed at once to every site we power. We often deploy multiple updates every day. Our proprietary technology is protected internally, making it nearly impossible for a hacker to crack.

Site security is one of the many reasons RebelMouse is the best CMS. Join us and reach a larger audience — safely.

Why RebelMouse Is the Best Content Marketing Platform

RebelMouse is a unique platform and company. The company was founded on the vision that media companies would need an always-modern solution to thrive in the new connected internet, and that brands would have to behave like new media companies and use the same platforms.

Keep reading... Show less

Why Premium Creative Agencies and CTOs Choose to Develop on RebelMouse vs. WordPress and Drupal

The Intersection of Design and Development: Where Your Clients Thrive

We started RebelMouse seven years ago knowing that there was a fundamental design flaw in the world of traditional CMSs: Every instance, on every platform, had to be updated independently. It's similar to an era when users had to manage their own Microsoft Exchange Server for email. The costs of managing, maintaining, and iterating on a CMS to keep it awesome and world class is typically a $10 million-a-year endeavor. But even then, these cost-prohibitive CMSs are still behind the times.

Keep reading... Show less

Native Multivariate Testing at Scale With RebelMouse

What Differentiates Our Approach

There are many popular tools that allow you to perform experiments and A/B tests on your users — primarily Google Chrome Experiments and Optimizely. But all of these solutions are JavaScript additions to your web page that sidestep the problem of old, outdated, and clumsy CMSs. These solutions work by calling on a third-party JavaScript library that rewrites a page after it's rendered. This approach adds extra page weight and creates strange user experiences due to having to wait for everything to load and be rewritten on the fly.

At RebelMouse, we've solved this in a very elegant way. At the core level of our platform, we can natively render different layouts and track the exact differences in performance when comparing a test to your other layouts.

Keep reading... Show less

Modern E-Commerce: Blur the Line Between Content and Design

Create Modular + Reusable Design Patterns on RebelMouse

Content saturation is an industry-wide problem, and the e-commerce space is no exception given that it's filled with big brands, small Etsy stores, and everyone in between all fighting for similar audiences. The best way to fight this symptom is to understand your audience and provide them with what they want.

Keep reading... Show less

Instagram-style E-commerce Features on RebelMouse

Revolutionizing E-commerce on RebelMouse

Whether you're a brand with a blog or a media company with a site, driving purchasing behavior and building an audience that uses your content to find things they love to buy is vital. We're very proud to have built out the same functionality that everyone is now used to on Instagram, with layovers on images that lead to products with attribution.

Keep reading... Show less

Building Premium Communities and User Journeys on RebelMouse

RebelMouse is much more than just a replacement for a traditional CMS. Our platform is a tremendous community-building experience. Today's social ecosystem has given us a seemingly limitless number of premium creators who understand how to create gorgeous and relevant content that drives the growth of their own audiences. These creators and influencers are either experts in certain topics, or heavily engaged in targeted content that drives their interests. They're not only consuming the content they're passionate about, but they're contributing to the conversation, too. The new role of the editor is not just to cover the most important topics and people around their expertise, but also to invite those preferred influencers into their community and get them to participate in creating premium content.

Keep reading... Show less

Dynamic Voting: Grow Traffic and Engagement Organically

Help your audience find its voice.

Creating quality content is no longer on marketers alone. We live in a universe of creators who are willing to not only consume content that resonates, but play a role in the creation, promotion, and conversations surrounding it.

Since the start of RebelMouse, we've been on a journey to create dynamic media that is easier for content creators to curate and amplify on social. It's why we've built an online engagement platform centered around the power of communities that thrive naturally in the digital ecosystem.

Keep reading... Show less

How to Monetize Your Website in Today’s Publishing Environment

In order to define distributive publishing, we have to ask the following question: If you have quality content, but nobody sees it, does it even exist? The answer is no, because your content needs to be supported in a way that lets it move seamlessly across all channels, especially site, search, and social. But let's take this question a step further: If you can't monetize your content to generate the support it needs, how do you create quality content in the first place?

Keep reading... Show less

Pro Tip: Too Many B Tests? Use Shared Elements for Better Organization

The RebelMouse platform offers unique multivariate testing that makes creating B tests for page layouts easy. However, sometimes having too many B tests can be hard for developers to organize and manage. If this is a problem on your site, you'll want to consider testing components of your site using shared elements. This helps your site's design workflow in a few ways:

  • Developers can work on different post layouts at the same time.
  • If you only want to process one B test, our servers will load all of them at the same time. Using shared elements prevents this from happening.
  • Our servers do not run shared elements if the conditional is set to false.
  • Post and Section pages will become more organized in Layout & Design Tool.
Keep reading... Show less

RebelMouse: The Healthcare CMS

RebelMouse is an industry-leading healthcare CMS that provides all the tools needed to create, maintain, publish, and distribute content on the web. Our platform has proven success with many healthcare-based sites. Indeed, the stats we have seen with these sites are nothing short of remarkable.

Keep reading... Show less

Google News Initiative Creates COVID-19 Vaccine Misinformation Fund

The Google News Initiative launched a new fund to battle misformation about the COVID-19 vaccine. The COVID-19 Vaccine Counter-Misinformation Fund is open to publishers all over the globe who reach audiences that are underserved by fact checking or targeted by misinformation.

Keep reading... Show less
Subscribe to Our Newsletter