We are seeing a disturbing trend emerging from the WordPress community in the past few days and that is an upsurge of reported security breaches. We strongly recommend website admins to perform a security scan of their websites right now and address issues if any.

The clean-up requests we’ve received have surged and here are just some of the scan reports we’ve received:

One of the likely culprits for these breaches is the recently discovered critical security flaw with the WP File Manager plugin. Read the reports here:

https://arstechnica.com/information-technology/2020/09/hackers-are-exploiting-a-critical-flaw-affecting-350000-wordpress-sites/

https://www.techradar.com/news/millions-of-wordpress-sites-targeted-using-major-security-flaw

In any case, this is the most widespread breach we’ve seen over the years and should not be taken lightly.

Even if you do not have the WP File Manager plugin installed, we strongly recommend an immediate scan of your websites using Wordfence or any similar security plugin. And clean up issues ASAP if any are found.

If you have any questions or need assistance, don’t hesitate to contact our support team.

Secure your WordPress website

People that read this article also liked

Critical Vulnerabilities Found on PageLayer Page Builder Plugin Critical Security Flaw in outdated WooCommerce NAB Transact Plugin Outdated WPBakery Plugin Critical Security Risk to Millions of Sites WordPress 5.7 “Esperanza” + WooCommerce 5.1 Released