WordPress tightens security with two-factor authentication

Share this article:

WordPress.com will now offer two-factor authentication as an opt-in capability for its millions of users to defend against account compromises.

Gary Pendergast, a developer at Automattic, the parent company of the popular web publishing platform, announced in a blog post late last week that users can now be prompted to enter “secret” codes upon logging into their accounts. These codes can be accessed either through the Google Authenticator app, which generates one-time login codes, or via SMS messages delivered to mobile phones.

WordPress.com sites have faced security issues in the past and are known to be a target for cyber criminals who leverage vulnerabilities to spread malware, such as the Flashback trojan, which infected Mac OS X systems.

The new feature comes on the heels of Apple's recent addition of “two-step verification,” which further protects its online account users through a similar process.
Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

More in News

CryptoWall surpasses CryptoLocker in infection rates

CryptoWall surpasses CryptoLocker in infection rates

A threat analysis from Dell SecureWorks CTU says that CryptoWall has picked up where its famous sibling left off.

Professor says Google search, not hacking, yielded medical info

Professor says Google search, not hacking, yielded medical ...

A professor of ethical hacking at City College San Francisco came forward to clarify that he did not demonstrate hacking a medical center's server in a class.

Syrian Malware Team makes use of enhanced BlackWorm RAT

Syrian Malware Team makes use of enhanced BlackWorm ...

FireEye analyzed the hacking group's use of the malware, dubbed the "Dark Edition" of BlackWorm.