techtimes

Outdated WordPress Plug-ins, Themes Distribute Backdoors For Potential Supply Chain Attack, Jetpack Says

WordPress themes and plug-ins became the latest target of suspicious attackers, according to Jetpack. For those who are using the older versions of these features, there is a possibility that you ...
Bleeping Computer

Over 90 WordPress themes, plugins backdoored in supply chain attack

A massive supply chain attack compromised 93 WordPress themes and plugins to contain a backdoor, giving threat-actors full access to websites. In total, threat actors compromised 40 themes and 53 ...
Ars Technica

Supply chain attack used legitimate WordPress add-ons to backdoor sites

If your site is using add-ons downloaded from AccessPress Themes, it may be infected. If you HAVE to run WordPress, just host it with Automattic. They curate and inspect all the plugins and if this ...
TechRadar

Another major WordPress add-on security flaw could affect 10,000 sites - find out if you're affected

King Addons plugin had two critical flaws enabling full WordPress site takeover Bugs allowed unauthenticated file uploads and privilege escalation via registration endpoint Users must update to ...