A new wave of cyberattacks has compromised millions of WordPress websites, raising concerns about platform security. The ...

Dozens of WordPress plugins were allegedly hijacked to push malware after they were sold to a new corporate owner.

WordPress announced a major clampdown to protect its theme and plugin ecosystem from password insecurity. These improvements follow a flurry of attacks in June that compromised multiple plugins at the ...

A malicious actor found a struggling WordPress plugin company, bought it, and introduced malware to each product.

Hackers can now take over WordPress sites instantly using a simple plugin flaw ...

More than 30 WordPress plugins in the EssentialPlugin package have been compromised with malicious code that allows ...

A tainted version was pushed as an update to more than 800,000 active websites.

Thousands of sites running WordPress remain unpatched against a critical security flaw in a widely used plugin that was being actively exploited in attacks that allow for unauthenticated execution of ...

The recent travails of WordPress have caused consternation among the web community that relies on the platform, which powers more than four in ten websites online today. Now, a coalition of prominent ...

As a platform renowned for its flexibility and accessibility, WordPress has become an instrumental tool for many enterprises worldwide. Its user-friendly design, customizable features and vast plugin ...

WordPress is one of the most widely-used Content Management Systems on the planet. With over 43% of websites using the platform, it’s no surprise that it has a target on its back. That not only means ...

WordPress versions 3.7 – 4.0 will no longer receive security updates beginning on December 1, 2022. Anyone using these out of date versions of WordPress will put their sites at risk for hacking after ...