Mass attacks that exploit a known vulnerability in the WordPress publishing platform have continued to bear fruit for hackers, with thousands of websites claimed in the past few weeks, a researcher … [Read more...]
Zero day bug for WordPress ?
Wednesday, 3 August 2011 By
Attackers are exploiting a widely used extension for the WordPress publishing platform to take control of vulnerable websites, one of the victims has warned. The vulnerability affects … [Read more...]
WordPress 3.1.4 released; security fix for possible malicious use
Thursday, 30 June 2011 By
WordPress 3.1.4 is available now and is a maintenance and security update for all previous versions. This release fixes an issue that could allow a malicious Editor-level user to gain further … [Read more...]
Backdoors in popular WordPress plugins under investigation
Wednesday, 22 June 2011 By
Earlier today the WordPress team noticed suspicious commits to several popular plugins (AddThis, WPtouch, and W3 Total Cache) containing cleverly disguised backdoors. They determined the commits were … [Read more...]
WordPress.com gets root-level hacked
Thursday, 14 April 2011 By
In a blog post, the commercial blogging site wordpress.com (not to be confused with wordpress.org, the open source blogging solution) is telling that they have suffered a root-level break-in on their … [Read more...]
WordPress.com under DDoS attack
Friday, 4 March 2011 By
In a statement Wordpress.com, a very popular blog hosting company, said they are suffering a very intense DDoS attack: There's an ongoing DDoS attack that was large enough to impact all three of … [Read more...]
WordPress 3.0.5 new security update released
Wednesday, 9 February 2011 By
WordPress 3.0.5 is now available and is a security hardening update for all previous WordPress versions. This security release is required if you have any untrusted user accounts, but it also comes … [Read more...]
