Title: WordPress Malware Disables Security Plugins to Avoid Detection Last modified: September 29, 2020 --- # WordPress Malware Disables Security Plugins to Avoid Detection * Resolved [mava0](https://wordpress.org/support/users/mava0/) * (@mava0) * [5 years, 8 months ago](https://wordpress.org/support/topic/wordpress-malware-disables-security-plugins-to-avoid-detection/) * I read about GP that it has a focus on security along side it’s coding standards, so that’s why I’m asking about this. * One of the big WP security plugins had a blog post with the title of this topic, dated the 10th of September, and it seems like a very dangerous thing to happen. * The question is about GP’s ability to stop attacks like this, and more generally I would like to know what the scope of GP’s security focus is, in how far is it able to plug security holes in WP itself? * [https://blog.sucuri.net/2020/09/wordpress-malware-disables-security-to-avoid-detection.html](https://blog.sucuri.net/2020/09/wordpress-malware-disables-security-to-avoid-detection.html) Viewing 3 replies - 1 through 3 (of 3 total) * [David](https://wordpress.org/support/users/diggeddy/) * (@diggeddy) * [5 years, 8 months ago](https://wordpress.org/support/topic/wordpress-malware-disables-security-plugins-to-avoid-detection/#post-13468731) * Hi there, * GP doesn’t add any security systems to stop would be attackers. That is the responsibility of server side security and security plugins. * GP complies to WordPress Coding standards, all of its code is checked for standards and security. These checks are completed internally, by the WordPress review teams and 3rd party security advisers. * We closely monitor future updates to WordPress. If a new vulnerability is identified in WP that was exposed through the theme then we would patch this immediately. This to my knowledge has never been required in the 6 years that GeneratePress has been available in the WordPress repository. * Thread Starter [mava0](https://wordpress.org/support/users/mava0/) * (@mava0) * [5 years, 8 months ago](https://wordpress.org/support/topic/wordpress-malware-disables-security-plugins-to-avoid-detection/#post-13469939) * Ok, thank you for your reply. * [David](https://wordpress.org/support/users/diggeddy/) * (@diggeddy) * [5 years, 8 months ago](https://wordpress.org/support/topic/wordpress-malware-disables-security-plugins-to-avoid-detection/#post-13472546) * You’re welcome Viewing 3 replies - 1 through 3 (of 3 total) The topic ‘WordPress Malware Disables Security Plugins to Avoid Detection’ is closed to new replies. * ![](https://i0.wp.com/themes.svn.wordpress.org/generatepress/3.6.1/screenshot. png) * GeneratePress * [Support Threads](https://wordpress.org/support/theme/generatepress/) * [Active Topics](https://wordpress.org/support/theme/generatepress/active/) * [Unresolved Topics](https://wordpress.org/support/theme/generatepress/unresolved/) * [Reviews](https://wordpress.org/support/theme/generatepress/reviews/) * 3 replies * 2 participants * Last reply from: [David](https://wordpress.org/support/users/diggeddy/) * Last activity: [5 years, 8 months ago](https://wordpress.org/support/topic/wordpress-malware-disables-security-plugins-to-avoid-detection/#post-13472546) * Status: resolved