WP Builds

415 – Feeling Insecure? with Tim Nash. Episode 3 – The state of WordPress security and the transition to bcrypt

Mar 27, 2025

Tim Nash, a cybersecurity expert with a background in physical penetration testing, dives into the critical state of WordPress security. He discusses the alarming rise in vulnerabilities, emphasizing the importance of the Patchstack report. Listeners learn about the transition to bcrypt for password hashing in WordPress 6.8, which greatly enhances security. Nash highlights the need for regular updates and monitoring plugins, while stressing that more vulnerabilities discovered can ultimately lead to better security practices.

01:19:23

Creator website

Episode guests

Tim Nash

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The increasing number of vulnerabilities in WordPress indicates progress in identifying security flaws, but necessitates timely patches to ensure user safety.

The transition to bcrypt for password hashing signifies a vital advancement in WordPress security, aimed at countering modern computational threats effectively.

Growing awareness among website owners about security compliance and regular audits is pushing the industry towards adopting best practices in cybersecurity.

Deep dives

The State of WordPress Security in 2025

The podcast discusses the findings from the Patchstack State of WordPress Security report for 2025, highlighting a significant rise in vulnerabilities discovered within the WordPress ecosystem. In 2024, nearly 8,000 new vulnerabilities were identified, predominantly within plugins rather than themes. The report suggests that while the quantity of vulnerabilities is alarming, it can also indicate progress in identifying and rectifying weaknesses, illustrating an active effort to enhance security. This discussion emphasizes the importance of not only discovering vulnerabilities but also ensuring that timely patches are implemented to maintain a secure environment.

Intro

5min

Navigating WordPress Security

7min

Current Trends in WordPress Security Vulnerabilities

4min

Navigating WordPress Security Challenges

20min

Examining WordPress Security Vulnerabilities

7min

Unwanted Advertisements and Website Security Threats

2min

Navigating WordPress Security Challenges

6min

Assessing WordPress Plugin Vulnerabilities and the Role of Virtual Patching

4min

Securing Passwords: From mCrypt to Bcrypt

20min

10.

Engagement, Sponsorships, and Upcoming Shows

4min

In this episode of WP Builds entitled "Feeling Insecure? Episode #3," Nathan Wrigley and Tim Nash explore various aspects of WordPress security. Tim shares insights into his background in cybersecurity, including his past experience with physical penetration testing. We discuss the Patchstack report on WordPress security, noting an increase in vulnerabilities but reassuring listeners that more vulnerabilities being found isn't necessarily alarming. We get into the complexity of vulnerabilities, security measures like hashing and encryption, and changes coming in WordPress 6.8. The episode highlights the importance of updates and ends with a positive outlook on security advancements. It's a tin foil hat episode, and I hope that you enjoy it!

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

WP Builds

415 – Feeling Insecure? with Tim Nash. Episode 3 – The state of WordPress security and the transition to bcrypt

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

The State of WordPress Security in 2025

Vulnerabilities and Their Implications

The Role of Bcrypt in Password Security

The Impact of Security Awareness and Compliance

The Landscape of Vulnerabilities in 2024

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

WP Builds

415 – Feeling Insecure? with Tim Nash. Episode 3 – The state of WordPress security and the transition to bcrypt

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

The State of WordPress Security in 2025

Vulnerabilities and Their Implications

The Role of Bcrypt in Password Security

The Impact of Security Awareness and Compliance

The Landscape of Vulnerabilities in 2024

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights