In a supply chain attack, attackers install backdoors through the WordPress plugins OptinMonster, TrustPulse, and PushEngage.
Three popular plugins served malicious JavaScript through a compromised CDN.
Threat actors have taken a campaign that uses fake browser updates to spread malware to a new level, weaponizing scores of WordPress plug-ins to deliver malicious infostealing payloads, after using ...
Matt Mullenweg, the co-founder of the popular open source web publishing software WordPress, has said the community will be pulling away from using Facebook’s React JavaScript library over concerns ...
Malware that exploits unpatched vulnerabilities in 30 different WordPress plugins has infected hundreds if not thousands of sites and may have been in active use for years, according to a writeup ...
Automattic, the company behind WordPress.com, WooCommerce, Longreads, Simplenote and soon Tumblr, is now worth $3 billion. But its founder and CEO Matt Mullenweg has a bigger goal. He wants to make ...