Bitdefender

Hidden WordPress Backdoors Found Creating Admin Accounts

Researchers have uncovered two backdoors planted on compromised WordPress websites that were designed to generate ...
Hosted on MSN

Paid WordPress users beware - worrying security flaw puts accounts and info at risk

A high-severity vulnerability has been discovered in a popular premium WordPress plugin, allowing threat actors to access, or exfiltrate, sensitive data without authentication. Security researcher ...
ZDNet

WordPress sites under attack as hacker group tries to create rogue admin accounts

A hacker group is exploiting vulnerabilities in more than ten WordPress plugins to create rogue admin accounts on WordPress sites across the internet. The attacks are an escalation part of a hacking ...
Bleeping Computer

WP Automatic WordPress plugin hit by millions of SQL injection attacks

Hackers have started to target a critical severity vulnerability in the WP Automatic plugin for WordPress to create user accounts with administrative privileges and to plant backdoors for long-term ...
Bleeping Computer

Critical WordPress Plugin Bug Lets Hackers Turn Users Into Admins

A critical privilege escalation vulnerability found in the WordPress SEO Plugin – Rank Math plugin can allow attackers to give administrator privileges to any registered user on one of the 200,000 ...
CSOonline

WordPress users not on Windows urged to update due to critical LiteSpeed Cache flaw

Updating to version 6.4 or higher will prevent exploitation of the vulnerability that allows attacker to gain admin access. More than five million WordPress sites are at risk of compromise due to a ...