> TritonInfoSec News
Home / Apr 16, 2026 / Story
0
#3 BleepingComputer general April 15, 2026 at 20:33 UTC

WordPress plugin suite hacked to push malware to thousands of sites

By Bill Toulas

AI Summary

More than 30 WordPress plugins in the EssentialPlugin package have been compromised with malicious code allowing unauthorized website access. The supply chain attack affects thousands of WordPress sites running these popular plugins.

Read full article → https://www.bleepingcomputer.com/news/security/wor…

Relevance score: 88.0/100

# More from April 16

  1. 1
    Critical Nginx UI auth bypass flaw now actively exploited in the wild BleepingComputer
  2. 2
    New AgingFly malware used in attacks on Ukraine govt, hospitals BleepingComputer
  3. 4
    Microsoft Issues Patches for SharePoint Zero-Day and 168 Other New Vulnerabilities The Hacker News
  4. 5
    Signed software abused to deploy antivirus-killing scripts BleepingComputer
  5. 6
    CISA flags Windows Task Host vulnerability as exploited in attacks BleepingComputer
  6. 7
    100 Chrome Extensions Steal User Data, Create Backdoor SecurityWeek
  7. 8
    n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails The Hacker News
  8. 9
    UK warns businesses to address cyber risks amid Anthropic AI panic The Record
  9. 10
    Educational company McGraw Hill says Salesforce misconfiguration led to data leak The Record