I’ve seen this article around here for several days now. Its an ars technica article Researchers find backdoor lurking in WordPress plugin used by schools and while they show code which I mainly skipped, you should check this out if you use this plug in, especially the paid version.
The short version, it can take over a website that has this plugin installed, and again, only if you have the paid one.. The vendor of this plugin doesn’t know how it got there and they don’t know how long it has been around.
I thought I’d finally get this out, I thought about talking about this on the show, but I don’t know anyone who is running this. If you do, please pass this along.
Discover more from The Technology blog and podcast
Subscribe to get the latest posts sent to your email.