Subscribe to Our Newsletter

x

Why Your WordPress Site Is Never Really Secure

Update: On Monday, December 18, 2017, there was a massive distributed brute force attack targeting WordPress sites. The attack used a large number of attacking IPs where each IP generated a huge number of these attacks. It is the largest, most aggressive breach to date, with over 14.1 million brute force attempts per hour.


WordPress security solutions are mere bandaids, subject to more attacks in the future.

Attacks like these are why your Wordpress is never really secure. With more than 87 million sites worldwide, WordPress is the leading CMS of the internet. But being a leader in your space doesn't come without its pitfalls. WordPress's massive site structure has opened them up to many security threats since the software's 2003 launch.

Another severe hacking event shocked WP users in February 2017, when attackers penetrated 1.5 million sites thanks to a loophole within the WordPress REST API. The REST API was touted as a connector to enhance communication with other web programs, revolutionizing WP's own outdated API. A vulnerability in the REST API allowed hackers to infiltrate nearly 2 million sites — compromising up to 350,000 sites in one campaign alone.

The only way WordPress core developers can patch significant vulnerabilities within their software is to deploy patches in the form of product updates. WP has deployed 238 releases over the past 14 years, and many of them have been to fix security problems.

Still, many site developers disable the automatic update feature because it could impact their site's design and function. About 5% of WordPress sites are not updated with the latest, most secure version.

Securing your WordPress site is costly, too. Simply purchasing a WordPress site isn't enough to protect your data. Users have to buy WordPress security plugins and installs from third-party companies to not only protect their site, but stay updated on new vulnerabilities.

One of the primary reasons WordPress is open to security threats is because it operates as a decentralized CMS. That means each site — all 87M+ of them — has to be updated individually. So every time there is a security threat or a big fix, those updates are not completed on a set timeline. The time it takes for your site to be updated could be catastrophic.

RebelMouse is a centralized CMS, which means all of our updates are quickly deployed at once to every site we power. We often deploy multiple updates every day. Our proprietary technology is protected internally, making it nearly impossible for a hacker to crack.

Site security is one of the many reasons RebelMouse is the best CMS. Join us and reach a larger audience — safely.

How to Include Interactive Elements in Posts

Enhance your articles with rich and creative media

Every article is a fresh chance to grab new readers and nurture loyal followers. This is why we give creators every opportunity to build content rich with media elements that enhance every reader's experience.

Add More Layers to Your Content

You can easily add interactive elements, like charts, to posts on our platform. For example, if you need to embed iframe code into a post, this can be done via our Add Media Bar. To do so, click the code icon (< >):

A text box will appear so you can insert your code:

Embedded Code Across Platforms

One important thing to keep in mind is that Google AMP, AppleNews, and Facebook Instant Articles will not always support embedded code. So if you use an iframe, it's best to turn off distribution to those channels for that particular post. If you have a lot of posts that require embedded code, this could be problematic for growth across those important platforms.

If you do want to use an iframe on a post destined for Google AMP distribution, it can be possible if the iframe is not at the top of the page or within the first 75% of the viewport when the page is scrolled to the top (whichever is smaller). AMP is a fast technology designed for mobile users and iframes are loaded using arbitrary timing that AMP's technology cannot ensure. For this reason, it's suggested that iframes be included in places that are not visible by users upon load.

If you have an article that needs to include an iframe at the top of the page, or within the first 75% of the viewport, AMP can be turned off for that individual article within Entry Editor.

If you don't need an interactive chart to be interactive in nature, can turn it into an image and upload it directly to your post. This way it will work on all platforms, including Google AMP, Apple News, and Facebook Instant Articles. This option, when possible, is ideal to ensure you're optimized for page speed.

Take Advantage of Shortcodes

Another great way to embed media is through our shortcodes functionality. Click here to learn more about shortcodes. Shortcodes can also inserted using the Add Media Bar. Click the brackets icon ([ ]) to choose the shortcode you want to use.

Here's an example of a chart on an article page that's been inserted using a shortcode:

If you have any questions about how to add interactive elements to your content, please email support@rebelmouse.com or talk to your account manager today.

Shortcodes Dashboard: Dynamic Media in Just a Few Clicks

Create multidimensional content with easy-to-find shortcodes

We believe static media is dead, and that every piece of content should be multidimensional and engaging. This is why our platform enables creators so they can add dynamic media to their content in easy and efficient ways.

One simple way to add interactive content to any post is through the use of shortcodes. Shortcodes are small snippets of code that are easier to remember than longer sequences. They typically will activate a feature or embed media into an article.

Keep reading... Show less

How to Add Scalable Vector Graphics to RebelMouse

Quickly add an SVG to any page

A Scalable Vector Graphic, or SVG, is a type of graphic format that gives you more flexibility than standard formats like JPEG or PNG.

To add an SVG to your RebelMouse site, first go to your Layout & Design tool. Next, open the SVG in a code editor and copy the entire <svg> element. Then, add a Custom HTML element to your layout and paste in the SVG code:

Keep reading... Show less
Subscribe to Our Newsletter