Hosted on MSN

Over 30 WordPress plugins backdoored after ownership change

A major WordPress supply chain attack has compromised more than 30 plugins from the EssentialPlugin suite, affecting hundreds of thousands of sites. The plugins were sold in early 2025 to a buyer who ...
TechSpot

Popular WordPress plugins backdoored after ownership change, putting thousands of websites at risk

A hot potato: WordPress plugins can significantly expand the native capabilities of the popular content management system, but they can also become a double edged sword. When malicious code finds its ...
GIGAZINE

Backdoors discovered in 31 WordPress plugins, added in updates after ownership transfer.

Web engineer Austin Ginder has published a blog post detailing how backdoors were embedded in 31 plugins owned by Essential Plugin, a company that develops WordPress plugins. Someone Bought 30 ...