Ars Technica

Backdoor slipped into multiple WordPress plugins in ongoing supply-chain attack

WordPress plugins running on as many as 36,000 websites have been backdoored in a supply-chain attack with unknown origins, security researchers said on Monday. So far, five plugins are known to be ...
Ars Technica

Critical WordPress plugin vulnerability under active exploit threatens thousands

Thousands of sites running WordPress remain unpatched against a critical security flaw in a widely used plugin that was being actively exploited in attacks that allow for unauthenticated execution of ...
Searchenginejournal.com

6 Best WordPress Review Plugins For 2023

If you sell any type of product or service on a WordPress site, you can benefit from installing a WordPress review plugin. With reviews for your services or products and increasing social proof, ...
The Verge

WordPress.org’s latest move involves taking control of a WP Engine plugin

WordPress co-founder Matt Mullenweg calls it “a rare and unusual situation” resulting from WP Engine’s legal moves. WordPress co-founder Matt Mullenweg calls it “a rare and unusual situation” ...
Bleeping Computer

Plugins on WordPress.org backdoored in supply chain attack

A threat actor modified the source code of at least five plugins hosted on WordPress.org to include malicious PHP scripts that create new accounts with administrative privileges on websites running ...
Bleeping Computer

Linux Foundation unveils decentralized WordPress plugin manager

A collective of former WordPress developers and contributors backed by the Linux Foundation has launched the FAIR Package Manager, a new and independent distribution system for trusted WordPress ...
CNET

Your Theme Can Make or Break Your Website. Here’s How to Choose the Best WordPress Theme for Your Needs

The best WordPress themes are updated regularly to improve functionality, fix security issues and ensure compatibility with WordPress updates. Your theme should at least have been updated when the ...