The Security & Malware Scan by CleanTalk plugin (version 2.141) has received the prestigious Plugin Security Certification (PSC) from CleanTalk. This powerful plugin provides comprehensive protection to WordPress websites by scanning for malware, blocking brute-force attacks, filtering unwanted traffic, and protecting your site from online threats. CleanTalk ensures that your website remains secure, fast, and fully optimized by combining a robust set of features to stop malicious attacks before they happen.
| Name of | Security & Malware scan by CleanTalk |
| Version | 2.141 |
| Downloads | 30 000+ |
| Description | Security & Malware scan by CleanTalk to protect your website from online threats and viruses. IP/Country FireWall, Web application FireWall. Detailed stats and logs to have full control. |
| Security | Successfully tested for SQL Injections, XSS Attacks, CSRF Attacks, Authentication Vulnerabilities, Authentication Bypass Vulnerabilities, Privilege Escalation Vulnerabilities, Buffer Overflow Vulnerabilities, Denial-of-Service (DoS) Vulnerabilities, Data Leakage Vulnerabilities, Insecure Dependencies, Code Execution Vulnerabilities, Privilege Escalation Vulnerabilities, File Unauthorized Access Vulnerabilities, Insufficient Injection Protection, and Information Leakage Vulnerabilities. |
| CleanTalk Certification | Proudly earned the “Plugin Security Certification” (PSC) from CleanTalk, indicating adherence to stringent security standards. |
| Additional Information | Users can confidently manage age restrictions with the assurance of the “Plugin Security Certification” (PSC). Verify the latest details on the plugin developer’s website. |
| Plugin Security Certification by CleanTalk |  |
| Logo of the plugin |  |
Key Features
Security FireWall
CleanTalk’s Security FireWall is a powerful defense mechanism, designed to filter traffic and block unwanted visitors from accessing your website. It can filter traffic by IP address, IP networks, or even by country, giving you complete control over who can access your site. This robust FireWall integrates seamlessly with CleanTalk’s Web Application Security Firewall for maximum protection, ensuring no unauthorized access to your WordPress backend.
Malware Scanner and AntiVirus Functions
The Malware Scanner and AntiVirus functionality detect and remove malicious code before it can harm your site. CleanTalk’s daily malware scans automatically check your WordPress core files, plugins, and themes for malware. The scanner identifies hacker files and suspicious code, allowing you to quickly neutralize any threats. For users without extensive programming knowledge, CleanTalk provides a Feedback System that lets you send suspicious files to CleanTalk’s cloud for expert analysis.
Brute Force Attack Protection
With CleanTalk, brute-force attacks on WordPress accounts and login attempts are stopped dead in their tracks. The plugin implements multiple layers of protection, including rate-limiting login attempts and applying a delay to failed login attempts, making brute-force attacks ineffective. Should a user’s IP address exceed the login threshold, it is automatically blocked for 24 hours. This type of protection is similar to solutions like Fail2ban, but fully integrated with WordPress for easier management.
Limit Login Attempts and DDoS Protection
CleanTalk includes an automatic rate-limiting feature that detects and blocks suspicious traffic patterns before they escalate into full-scale attacks. The Limit Login Attempts feature adds another layer of security by reducing the chance of brute force attacks and ensuring only legitimate users gain access. CleanTalk also offers protection against HTTP/HTTPS DDoS attacks by limiting the number of requests per IP address and blocking suspicious activities through the Security FireWall.
Advanced Security Reporting
CleanTalk provides real-time security reporting directly to your email. You’ll receive updates on the daily security status of your website, including malware scan results, suspicious file detection, and brute-force attack prevention logs. In addition, the plugin provides detailed audit logs to track login attempts, user activity in the WP Dashboard, and file changes. These logs give you a complete overview of what is happening on your website, helping you monitor and act on any suspicious activity.
Two-Factor Authentication
Two-Factor Authentication (2FA) gives your website an additional layer of security by requiring a secondary login credential to access the backend. CleanTalk allows you to set up 2FA easily, ensuring only authorized users gain access to your site. Once a browser is verified, CleanTalk remembers it for 30 days, improving both security and user convenience.
Custom WP-Login URL
The plugin lets you change the default wp-login URL to a custom one, reducing the chance of automated brute-force attacks. Since many hackers target the default WordPress login page, having a custom URL will make it much harder for bots to find your login page, further securing your site.
File System Watcher
The File System Watcher continuously monitors your WordPress files for changes. By comparing file snapshots taken over the past seven days, it alerts you to any changes that might indicate malicious tampering. If a file is changed unexpectedly, you can investigate the suspicious activity and take corrective action immediately.
Real-Time Traffic Control and Logging
CleanTalk’s Traffic Control feature tracks all visitors in real time, regardless of whether they have JavaScript enabled. If a visitor triggers too many requests within a specific period, their access will be blocked, preventing potential DDoS attacks or abusive bot traffic from overwhelming your site. Additionally, HTTP request headers like “X-Content-Type-Options” and “X-XSS-Protection” enhance security against XSS and drive-by-download attacks.
CleanTalk Web Application Firewall (WAF)
The Web Application Firewall (WAF) protects your website against common attack vectors such as SQL Injection, Cross-Site Scripting (XSS), and file uploads from unauthorized users. By proactively monitoring all incoming requests and filtering out suspicious traffic, the WAF ensures that your site stays safe from both known and unknown vulnerabilities.
Trusted Cloud-Based Service
CleanTalk’s security features, including malware scanning and FireWall functionality, are all backed by the CleanTalk Cloud. This robust cloud-based security platform allows for seamless updates, advanced malware analysis, and centralized logging for a period of 45 days. All your security data is stored safely in the cloud, ensuring complete control of your website’s protection without compromising performance.
Security Assurance
The Security & Malware Scan by CleanTalk is not just another security plugin – it’s an all-encompassing solution designed to protect your WordPress website from every conceivable online threat. Its advanced FireWall, real-time traffic control, malware scanning, and brute force protection ensure that your website remains secure and functional. With additional features like 2FA and the custom wp-login URL, you can rest assured that your site is fortified against even the most determined attackers.
With CleanTalk’s Plugin Security Certification (PSC), version 2.141 of Security & Malware Scan by CleanTalk assures users of enhanced security, improved malware detection, and optimized protection against both known and emerging threats. CleanTalk’s comprehensive solution goes beyond traditional security plugins, offering both novice and experienced users peace of mind.
Conclusion
The Security & Malware Scan by CleanTalk plugin provides exceptional security for WordPress websites, ensuring that they are protected from malware, brute-force attacks, and unauthorized access. Having earned the Plugin Security Certification (PSC-2024-64527), CleanTalk stands out as a leading provider of WordPress security solutions. Its real-time monitoring, advanced malware scanner, and robust FireWall work together to keep your website secure while optimizing performance.
Note: The date and certification information may change over time. It is advisable to verify the latest details on the plugin developer’s website.
