Krebs on Security

Hundreds of WordPress Blogs Hit by ‘Networkads.net’ Hack

A large number of bloggers using WordPress are reporting that their sites recently were hacked and are redirecting visitors to a page that tries to install malicious software. According to multiple ...
ZDNet

An inside look at WP-VCD, today's largest WordPress hacking operation

Today's top WordPress malware threat is a criminal operation known as WP-VCD, currently responsible for the vast majority of hacked WordPress sites, according to a Wordfence report shared exclusively ...
Wired

A Critical Flaw Is Affecting Thousands of WordPress Sites

Hackers are actively exploiting a vulnerability that allows them to execute commands and malicious scripts on websites running File Manager, a WordPress plugin with more than 700,000 active ...
Infosecurity-magazine.com

WP Ultimate CSV Importer Flaws Expose 20,000 Websites to Attacks

Two high-risk security vulnerabilities in the WP Ultimate CSV Importer plugin for WordPress have been discovered by security researchers. These flaws, potentially affecting over 20,000 websites, allow ...
Infosecurity-magazine.com

Vulnerability in WordPress BackupBuddy Plugin Exploited By Hackers

Hackers have attempted to exploit a zero–day flaw in a WordPress plugin called BackupBuddy five million times, sometimes successfully. The news comes from WordPress security–focused company Wordfence, ...