Automatic Website Traffic RSS

Thousands of WordPress sites targeted with malicious plugin backdoor ...

Security researchers found JavaScript code installing four backdoors to WP-powered sites They also found a vulnerable plugin enabling full website takeover There are patches and mitigations for ... read more

Hackers Exploit Critical WordPress Theme Flaw to Hijack Sites via Remote Plugin Install

Critical WordPress flaw CVE-2025-5394 lets attackers take over sites using the "Alone" theme. 120K+ attempts blocked. read more

WordPress plugin disguised as a security tool injects backdoor

A new malware campaign targeting WordPress sites employs a malicious plugin disguised as a security tool to trick users into installing and trusting it. According to Wordfence researchers, the ... read more

A Silent WordPress Breach Could Be the Next Big Crypto Exploit

A WordPress plugin exploit risks crypto scams via phishing and redirects; 40,000+ sites still haven't patched the issue. read more

Over 6,000 WordPress sites hacked to install plugins ... - BleepingComputer

WordPress sites are being hacked to install malicious plugins that display fake software updates and errors to push information-stealing malware. Over the past couple of years, information ... read more