Searchenginejournal.com

WordPress X Account’s ‘Childish’ Trolling Causes Backlash

An official WordPress.org social media account was used to troll the open source movement to decentralize the WordPress plugins and themes repository, creating what some feel was an undignified, even ...
TechRadar

Another top WordPress plugin hacked to allow account takeover - stay safe with these tips

Experts find a way to trick Forminator into deleting a core WordPress file This process would trigger the site's setup, where hackers can take it over A patch is available, and users are advised to ...
PC World

Cookies open WordPress accounts to easy hijacking

If you’re a WordPress.com user you’ll want to be extra cautious the next time you’re tempted to whip up a blog post from your local coffee shop. If anyone on the same open connection is using a ...
CSOonline

WordPress plugin hole enables account takeover

What makes this now-patched plugin hole especially dangerous is the lack of authentication needed for an attack, which can give the ability to change root/admin passwords. The disclosure of a major ...
The Next Web

Automattic releases WordPress for iOS update with native Reader, better account management, and more

Automattic has released an iOS app update for its popular WordPress blogging platform. With version 3.7, users will have a native WordPress.com Reader, better account management, and more. WordPress ...
ZDNet

Zero-day in WordPress SMTP plugin abused to reset admin account passwords

Hackers are resetting passwords for admin accounts on WordPress sites using a zero-day vulnerability in a popular WordPress plugin installed on more than 500,000 sites. The zero-day was used in ...
Bleeping Computer

Critical Wordpress plugin bug lets hackers take over hosting account

Hackers can exploit a maximum severity vulnerability in the wpDiscuz plugin installed on over 70,000 WordPress sites to execute code remotely after uploading arbitrary files on servers hosting ...