Backdoors discovered in 40 WordPress Themes and 53 Plugins

6 points by techjolt ↗ HN
Over 40 WordPress themes and 53 plugins have been found to be infected with backdoor shells, by unknown hackers exploiting several sites to gain admin access.

According to Jetpack, earlier versions of the popular add-ons were allegedly used to propagate backdoors as part of a supply chain attack, therefore customers of AccessPress Themes should opt for updated versions of the company’s WordPress themes and plug-ins.

3 comments

[ 2.0 ms ] story [ 16.9 ms ] thread
Is anyone even surprised by these anymore?
Seems like a lot of social plugins that allow api access. Keep WP simple dont add shit to it