ZDNet

Vulnerability found in WordPress plugin with over 3 million installations

Updates have been released for UpdraftPlus, a WordPress plugin with over 3 million installations, after a vulnerability was discovered by Jetpack security researcher Marc Montpas. Montpas said the ...
Ars Technica

Millions of WordPress sites get forced update to patch critical plugin flaw

Millions of WordPress sites have received a forced update over the past day to fix a critical vulnerability in a plugin called UpdraftPlus. The mandatory patch came at the request of UpdraftPlus ...
Bleeping Computer

WordPress force installs UpdraftPlus patch on 3 million sites

WordPress has taken the rare step of force-updating the UpdraftPlus plugin on all sites to fix a high-severity vulnerability allowing website subscribers to download the latest database backups, which ...
Bleeping Computer

Hackers Backdoor Sites by Hiding Fake WordPress Plugins

Malicious plugins that hide in plain sight and act as backdoors are used by attackers to gain and maintain a foothold on WordPress websites, and to upload web shells and scripts for brute-forcing ...
Threat Post

Severe WordPress Plug-In UpdraftPlus Bug Threatens Backups

An oversight in a WordPress plug-in exposes PII and authentication data to malicious insiders. The WordPress plug-in “UpdraftPlus” was patched on Wednesday to correct a vulnerability that left ...
TechRadar

WordPress plugin vulnerability exposed millions of websites to attack

Security Over 17 million victims reported in huge Prosper data breach - here’s what we know so far Security Over 120 million Reputation.com records might have leaked online - here's what we know ...