Second alert from ACSC in two months shows unpatched CMS bugs still exploited
WordPress plugins targeted.
Read the full article2h ago
You might also wanna read
Critical Kirki flaw exploited to hijack WordPress admin accounts
Critical Kirki flaw exploited to hijack WordPress admin accounts
bleepingcomputer.com·1mo ago
Attackers Actively Exploiting Critical Vulnerability in Burst Statistics Plugin
Update those installs of Burst Statistics! #WordPress #Security
wordfence.com·1mo ago
WordPress malware campaign hides payloads in Steam profiles
WordPressマルウェアキャンペーンが、SteamプロフィールコメントにC2データを隠蔽。約2000サイトが感染。
bleepingcomputer.com·1mo ago

WAF - WAF Release - 2025-08-04
This week's highlight focuses on a series of significant vulnerabilities identified across widely adopted web platforms, from enterprise-gra
Cloudflare·11mo ago

What to do when one of your WordPress plugins gets compromised
A recent study from Patchstack found that 97% of detected WordPress security vulnerabilities came from WordPress plugins. Here’s what you ne
Mass exploitation of Gravity SMTP WordPress plugin vulnerability steals API keys from 100,000 sites
Wordfence reported blocking 17M+ exploit attempts targeting Gravity SMTP since early May 2026, with the plugin installed on about 100,000 Wo

Comments
Sign in to join the conversation.
No comments yet. Be the first.