Original security research from the GridSecure team. We discover and responsibly disclose vulnerabilities, publish trend reports, and share threat intelligence with the wider community.
What we publish
- Vulnerability disclosures — original findings in WordPress core, plugins, and themes
- Threat trend reports — quarterly analysis of attack patterns we observe
- Malware family analysis — deep dives into specific malware campaigns
- Incident case studies — anonymized post-mortems from real customer engagements
- Tooling releases — open-source utilities we build for our analysts
Responsible disclosure
When we find vulnerabilities in third-party plugins or themes, we always contact the maintainer first and give them a reasonable window to release a fix before publishing details. We have helped fix hundreds of vulnerabilities — quietly, where possible, and loudly when maintainers ignore reports.
Want to collaborate?
We work with universities, threat intelligence sharing organizations, and other security vendors. If you have research you would like to discuss, or a coordinated disclosure to propose, contact us.