The Hacker News

Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites

Tampered JavaScript in three Awesome Motive plugins exposed WordPress sites to rogue admin accounts and hidden backdoors.
Searchenginejournal.com

WordPress Update Improves Page Speed With Smarter Script Loading

WordPress 6.4 loads scripts smarter to improve page speeds. JavaScript files now load deferred or async to prevent blocking. These changes allow for future optimizations like content security policies ...
ZDNet

WordPress botnet deploys anti-adblocker script to make sure its spammy ads are profitable

The threat actor behind the internet's largest WordPress botnet is using an anti-adblocker script to make sure the ads they inject on hacked sites are showing up in users' browsers and generating a ...
Threat Post

Zero-Day Patched in TimThumb WordPress Script

A zero-day vulnerability has been patched in the PHP-based image resizer TimThumb, popular in WordPress themes, after it was publicly disclosed this week. A patch for a zero-day vulnerability in ...