WordPress blogs are complex pieces of software with a threat surface that expands with each plug-in or theme you install. Whenever I set up a new WordPress site, one of the first things I install is Wordfence - a security plug-in that provides a number of services that help me monitor and manage those sites. Wordfence has launched a WordPress Security Audit service.

Wordfence is one of the first plug-ins I install when I set up a Wordpress site. And their blog is a great source of information on current vulnerabilities and exploits. They have posted a list of 22 Abandoned WordPress Plugins with Vulnerabilities. And while the list is interesting, some of the other data they have unearthed is a cause of concern.

If you use the WordPress content management system (CMS) for your blog or website, you should patch it now. The WordPress version 4.7.3 update fixes six security issues, most of them concern cross-site scripting (XXS) vulnerabilities. Here's what you need to know.

, you can get lifetime access to over 140 responsive WordPress themes, with 2-3 featured themes added each month.

It takes a sizeable pair of potatoes to use code from a massively huge project such as WordPress in your own project and fail to give proper attribution, or follow the terms of the project's licenses. Yet, according to Automattic CEO Matt Mullenweg, this is precisely what Wix has done with its mobile app.

WordPress is the world’s top content management system for a reason. It’s no wonder why it's used by web developers all over to build websites, online shops, and more.

Pick up a lifetime membership to WPacademy, and you can kickstart your web development career with over a hundred WordPress tutorials.

Depending on your setup, it may be a challenge to get your site working fast enough when you post lots of media. I've experienced themes before that didn't respond well to multiple embedded Youtube videos, for example. But if your site is heavy on the images, you'll definitely want to look at ThemeIsle's advice.

WordPress is the most popular content management system for blogging on the web by a long margin. Unfortunately, this has made it a target for nefarious hackers looking to access private data and/or insert malware. This infographic from cmstowp breaks down everything you need to know about WordPress security -- including tips to keep your site protected.

WordPress is arguably the most prevalent of content management systems on the web today so, unsurprisingly, it's a massive target for malicious activities. While the core WordPress package has had its share of security issues, it's outdated plugins that are a major contributor, with three in particular comprising 25 per cent of all WordPress vulnerabilities.

Want to make extra cash from blogging? Then you’ll want to know everything about WordPress. Become an expert in this power content management system with the WordPress Wizard Bundle, just $65 AUD for Lifehacker Australia readers, a savings of 95% off the RRP.

Wordpress just announced it has activated HTTPS on all of its custom domains, effective immediately.

Setting up a website with a content management system (CMS) allows people with no web development skills to easily add and manage content on the site. Trouble is, there are are a lot of CMS offerings out there and picking the right one for your needs may prove challenging. This infographic comparing the three biggest CMS platforms in the market today may help you make up your mind.

The latest update to Wordpress is all about plugging those pesky security holes.

Typically, getting a local instance of WordPress running requires some sort of server stack, with LAMP (Linux-Apache-MySQL-PHP) being the most common. However, if you just need a sandbox CMS or blogging platform without having to host it online or install up a bunch of web services, Instant WordPress will do the job faster than any other option.

There's no piece of software, be it an application on your computer or a content management system on a server, that you'll be happy with out of the box. Rather than turn away from the configuration "phase" of post-installation, just find yourself a good guide and get tweaking. In the case of WordPess, Digital Inspiration has you covered with an expansive list of pointers.

Dear Lifehacker, I'm about to head on a trip. Can overseas IP addresses access cPanel/FTP and the WordPress' administrator dashboard?

"Benny" brings inline video and tweets to unpublished posts, content focus and more easily browsable plugins.

WordPress has a lot going for it, including a flexible, open platform the encourages users to develop plug-ins and themes that make it even better. That same benefit, however, invites more nefarious parties to craft malicious code and slip it into free content. While prevention is always the best option, it doesn't hurt to install a plug-in or two that can detect and alert you to suspicious code.

We've seen examples of mistakes you can make that will cause your WordPress-powered site run worse... but how about some advice to make it run better? There are a number of simple tweaks you can make, sure, but there's one thing that will often trump any other improvement -- disabling slow plug-ins.