> TritonInfoSec News
Home / Apr 11, 2026 / Story
0
#8 The Hacker News general April 10, 2026 at 06:28 UTC

Backdoored Smart Slider 3 Pro Update Distributed via Compromised Nextend Servers

By [email protected] (The Hacker News)

AI Summary

Threat actors compromised Nextend's update servers to distribute a backdoored version of Smart Slider 3 Pro (version 3.5.1.35) for WordPress and Joomla. The supply chain attack affects a popular slider plugin with over 800,000 active WordPress installations, demonstrating how attackers target plugin update mechanisms to achieve widespread distribution.

Read full article → https://thehackernews.com/2026/04/backdoored-smart…

Relevance score: 78.0/100

# More from April 11

  1. 1
    ‘It reads like a spy novel’: $280 million theft from Drift involved North Korean fake companies, cutouts The Record
  2. 2
    Nearly 4,000 US industrial devices exposed to Iranian cyberattacks BleepingComputer
  3. 3
    Supply chain attack at CPUID pushes malware with CPU-Z/HWMonitor BleepingComputer
  4. 4
    Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure The Hacker News
  5. 5
    Dutch hospitals face disruptions after ransomware attack on software provider ChipSoft The Record
  6. 6
    Microsoft: Canadian employees targeted in payroll pirate attacks BleepingComputer
  7. 7
    Hackers exploiting Acrobat Reader zero-day flaw since December BleepingComputer
  8. 9
    New ‘LucidRook’ malware used in targeted attacks on NGOs, universities BleepingComputer
  9. 10
    New VENOM phishing attacks steal senior executives' Microsoft logins BleepingComputer