Fake Google Meet Page Delivers PowerShell Malware
A malicious Google Meet look-alike page hosted on hijacked WordPress sites is deceiving users into run a PowerShell command that install malware on their device.
Read MoreWordpress
Critical Vulnerabilities in WordPress Anti-Spam Plugin Expose 200,000 Sites
Two critical vulnerabilities have been discovered in a popular WordPress anti-spam plugin used by over 200,000 websites.
Read MoreHigh-Risk Vulnerability in WPLMS WordPress Theme Threatens Thousands of Sites
Patch this WordPress LMS theme vulnerability as soon as possible.
Read MoreWordPress Sites Targeted by Malware via Fake Plugins
Dubbed “ClickFix”, this campaign uses fake plugins with malicious scripts imbedded in them.
Read MoreYoast XSS Flaw
Popular SEO plugin Yoast needs to be updated to keep WordPress websites secure.
Read MoreSEC Data Breach and WP Plugin Patch
The FBI has published a new policy for publicly traded companies regarding security breaches. Get the details and access to the complete policy here.
Read MoreWP Plugin Patch & Akira Defeated
An important WordPress plugin update, and Avast defeats Akira ransomware encryption.
Read MoreWP Plugin Patch and PhaaS
A certain WordPress plugin is patched against a security flaw, and “phishing-as-a-service” is a real thing, especially against Microsoft 365 accounts.
Read MoreLastPass Data Breach Update and LearnPress Plugin Patched
More details about the LastPass breach and LearnPress plugin users need to apply the latest update to address multiple security flaws.
Read MoreMicrosoft Defender Rollback, and WordPress Plugins With Vulnerabilities
Disappearing shortcuts are the result of an over-zealous Defender, and there are a few WordPress plugins that should be updated. Read more for the latest on these issues.
Read More