1.
2.
Hackers exploit info disclosure bug in Gravity SMTP WordPress plugin
(bleepingcomputer.com)
3.
Police cleans nearly 15,000 SocGholish-infected sites tied to Evil Corp
(bleepingcomputer.com)
4.
ShapedPlugin update flow hacked to infect WordPress sites
(bleepingcomputer.com)
5.
6.
7.
'Lorem Ipsum' Malware Pivots to ClickFix Delivery
(darkreading.com)
8.
9.
OptinMonster WordPress plugin hacked in CDN supply-chain attack
(bleepingcomputer.com)
10.
Critical Kirki flaw exploited to hijack WordPress admin accounts
(bleepingcomputer.com)
11.
WordPress malware campaign hides payloads in Steam profiles
(bleepingcomputer.com)
12.
WP Maps Pro bug exploited to create admin accounts on WordPress sites
(bleepingcomputer.com)
13.
Funnel Builder WordPress plugin bug exploited to steal credit cards
(bleepingcomputer.com)
14.
Avada Builder WordPress plugin flaws allow site credential theft
(bleepingcomputer.com)
15.
HostGator Promo Codes: 76% Off for April 2026
(wired.com)
16.
Hackers exploit auth bypass flaw in Burst Statistics WordPress plugin
(bleepingcomputer.com)
17.
Australia warns of ClickFix attacks pushing Vidar Stealer malware
(bleepingcomputer.com)
18.
Hackers abuse Google ads for GoDaddy ManageWP login phishing
(bleepingcomputer.com)
20.
Breaking Up with WordPress After Two Decades
(news.ycombinator.com)
21.
Popular WordPress redirect plugin hid dormant backdoor for years
(bleepingcomputer.com)
22.
There are only four sensible ways to build a website
(news.ycombinator.com)
23.
Hackers exploit file upload bug in Breeze Cache WordPress plugin
(bleepingcomputer.com)
24.
Matt Mullenweg Overrules Core Committers; Puts Akismet on WP 7's Connector List
(news.ycombinator.com)
25.
26.
WordPress plugin suite hacked to push malware to thousands of sites
(bleepingcomputer.com)
27.
28.
29.
Someone bought 30 WordPress plugins and planted a backdoor in all of them
(news.ycombinator.com)
30.
Someone Bought 30 WordPress Plugins and Planted a Backdoor in All of Them
(news.ycombinator.com)