Last year, HackerOne ran an experiment with a WordPress website. WordPress is a powerful platform with many options, including how you approach security. From our experiment, and the bug bounty program we ran in parallel, here are my top security tips for securing your WordPress site. Enforce a Content Security Policy A Content Security Policy (CSP), gives […]