Infosecurity-magazine.com

New WordPress Malware Masquerades as Plugin

A dangerous malware variant disguised as a legitimate WordPress plugin has been uncovered by security researchers. The malware, named “WP-antymalwary-bot.php,” gives attackers persistent access to ...
Bleeping Computer

Post SMTP plugin flaw exposes 200K WordPress sites to hijacking attacks

More than 200,000 WordPress websites are using a vulnerable version of the Post SMTP plugin that allows hackers to take control of the administrator account. Post SMTP is a popular email delivery ...
Searchenginejournal.com

WordPress Vulnerability Hits +1 Million Using Header & Footer Plugin

Vulnerability discovered in WordPress plugin is the second one found so far this year Cross-Site Request Forgery (CSRF) Vulnerability could allow deletion of files More than 1 Million active ...