Automattic takes WordPress security company WPScan under its wing

News
By
published

Acquisition will help take WPScan's WordPress vulnerability database to the next level

Jetpack and WPScan
(Image credit: Jetpack)

Automattic's Jetpack has announced that it will acquire the popular WordPress vulnerability database WPScan for an undisclosed sum.

Although WPScan started out as a simple Ruby script to help identify vulnerabilities in self-hosted WordPress sites back in 2011, over the years its database has become a security tool used across the entire WordPress ecosystem.

Today both security researchers and WordPress communities use WPScan's database to learn about new vulnerabilities in WordPress themes, WordPress plugins and even WordPress core. Vulnerabilities are sourced from across the web and over the last 10 years, the company has cataloged over 23,000 WordPress vulnerabilities.

In addition to sponsoring WPScan for years, Automattic relies on its vulnerability database to help power Jetpack Scan.

A resource for the WordPress community

Besides creating an outstanding security offering, Automattic's goal for its acquisition of WPScan is to make malware data and APIs more open source.

At the same time, the company wants to ensure that WPScan remains a high-quality security resource for the entire WordPress community which is why it is exploring ways to make the API completely free for non-commercial sites according to Jetpack Product Engineering Lead at Automattic, Steve Seear.

As part of the acquisition, two of WPScan's founders, Ryan Dewhurst and Erwan Le Rousseau, will be joining Automattic to continue their work of improving security across the entire WordPress ecosystem. Once the deal has closed, WPScan will continue to operate independently in the near term though it may be integrated into Jetpack Scan in the future.

WPScan founder Ryan Dewhurst explained in a press release how the acquisition will help take WPScan to the next level, saying:

“We’re extremely proud of building WPScan over the last ten years. Automattic has always been a great partner, and we can’t wait to start working more closely together so we can take WPScan to the next level. I’m really excited about working on making our WordPress vulnerability database more open and accessible to the community.” 

We've also featured the best WordPress hosting, best WordPress security plugins and best WordPress website builder

Anthony Spadafora
Anthony Spadafora

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home. 

Read more
Laptop computer displaying logo of WordPress, a free and open-source content management system (CMS)
Another major WordPress plugin has been hacked to try and hijack your sites
Laptop computer displaying logo of WordPress, a free and open-source content management system (CMS)
Top WordPress plugins found to have some serious security flaws, so make sure you're protected
Laptop computer displaying logo of WordPress, a free and open-source content management system (CMS)
Another serious WordPress plugin vulnerability could put 40,000 sites at risk of attack
Laptop computer displaying logo of WordPress, a free and open-source content management system (CMS)
Thousands of WordPress websites hit in new malware attack, here's what we know
WordPress
WordPress users beware - these popular theme plugins have some major security issues
Laptop computer displaying logo of WordPress, a free and open-source content management system (CMS)
Over a million WordPress sites exposed to attack from W3 Total Cache plugin flaw
Latest in Security
An American flag flying outside the US Capitol building against a blue sky
Sean Plankey selected as CISA director by President Trump
Ai tech, businessman show virtual graphic Global Internet connect Chatgpt Chat with AI, Artificial Intelligence.
Nation-state threats are targeting UK AI research
Scam alert
Fake jobs and phone calls: How Americans lost $12.5 bn to fraud in 2024
Application Security Testing Concept with Digital Magnifying Glass Scanning Applications to Detect Vulnerabilities - AST - Process of Making Apps Resistant to Security Threats - 3D Illustration
Google bug bounty payments hit nearly $12 million in 2024
Scam alert
A new SMS energy scam is using Elon Musk’s face to steal your money
Representational image of a cybercriminal
Allstate sued for exposing personal customer information in plaintext
Latest in News
Vision Pro Metallica
Apple Vision Pro goes off to never never land with Metallica concert footage
Mufasa is joined by another lion, a monkey and a bird in this promotional image
Mufasa: The Lion King prowls onto Disney+ as it finally gets a streaming release date
An American flag flying outside the US Capitol building against a blue sky
Sean Plankey selected as CISA director by President Trump
An Nvidia GeForce RTX 4060 on a table with its retail packaging
Nvidia RTX 5060 GPU spotted in Acer gaming PC, suggesting rumors of imminent launch are correct – and that it’ll run with only 8GB of video RAM
Indiana Jones talking to a friend in a university setting with a jaunty smile on his face
New leak claims Indiana Jones and the Great Circle PS5 release will come in April
A close up of the limited edition vinyl turntable wrist watch from AndoAndoAndo
This limited-edition timepiece turns the iconic Technics SL-1200 turntable into a watch, and I want one
More about security
Dr Chase Cunningham speaking at ZTW25

The grand delusion: endpoint protection isn’t the magic pill, says Dr Zero Trust
An American flag flying outside the US Capitol building against a blue sky

Sean Plankey selected as CISA director by President Trump
EDMONTON, CANADA - FEBRUARY 10: A woman uses a cell phone displaying the Open AI logo, with the same logo visible on a computer screen in the background, on February 10, 2025, in Edmonton, Canada

T-Mobile rival is giving free ChatGPT Plus, worth hundreds, to its subscribers - but there's a catch
See more latest
Most Popular
EDMONTON, CANADA - FEBRUARY 10: A woman uses a cell phone displaying the Open AI logo, with the same logo visible on a computer screen in the background, on February 10, 2025, in Edmonton, Canada
T-Mobile rival is giving free ChatGPT Plus, worth hundreds, to its subscribers - but there's a catch
Three photos of the iPad Air M3 and its camera
iPad Air M3 review roundup – should you buy Apple's new mid-range tablet?
Vision Pro Metallica
Apple Vision Pro goes off to never never land with Metallica concert footage
HP LaserJet Pro 3000 on modern office desk
Now HP printers are being bricked following firmware update
Meta QLC Server
Facebook engineers say bigger hard disk drives is making one critical metric far, far worse
Mufasa is joined by another lion, a monkey and a bird in this promotional image
Mufasa: The Lion King prowls onto Disney+ as it finally gets a streaming release date
Two iPhones showing Apple HomeKit settings
Still using an iPad as a Home Hub? Bad news – Apple is about to end support for it
Horizon Zero Dawn Remastered
Future PlayStation games could have AI-powered characters, if this leaked prototype of Aloy is anything to go by
An American flag flying outside the US Capitol building against a blue sky
Sean Plankey selected as CISA director by President Trump
Scam alert
Fake jobs and phone calls: How Americans lost $12.5 bn to fraud in 2024