all InfoSec News logo
all InfoSec News - Your InfoSec news aggregator
Log in Sign up
all InfoSec News

Developer Accounts Compromised Due to Credential Reuse in WordPress.org Supply Chain Attack

Add to bookmarks
June 26, 2024, 9:52 p.m. | Chloe Chamberland

Wordfence www.wordfence.com

On June 24th, 2024, the Wordfence Threat Intelligence Team became aware of a WordPress plugin, Social Warfare, that was infected with malware through the WordPress repository. Upon further investigation, our team quickly identified 4 additional affected plugins through our internal Threat Intelligence platform. We immediately notified the WordPress Plugin’s Team and they removed the malicious ...
Read More


The post Developer Accounts Compromised Due to Credential Reuse in WordPress.org Supply Chain Attack appeared first on Wordfence.

accounts attack aware compromised credential credential reuse developer intelligence internal investigation june malware org platform plugin plugins quickly repository reuse social supply supply chain supply chain attack team threat threat intelligence threat intelligence platform threat research warfare wordfence wordpress wordpress plugin wordpress security

Visit resource

More from www.wordfence.com / Wordfence

WordPress Security Research: A Beginner’s Series 2 hours ago | www.wordfence.com
beginner bounty bug bug bounty +19
WordPress Security Research Series: WordPress Request Architecture and Hooks 2 hours ago | www.wordfence.com
architecture beginner blog blog post +15
3 More Plugins Infected in WordPress.org Supply Chain Attack Due to Compromised Developer Passwords 3 days, 3 hours ago | www.wordfence.com
accounts attack attacker aware +24
An Inside Look at The Malware and Techniques Used in the WordPress.org Supply Chain Attack 3 days, 23 hours ago | www.wordfence.com
attack aware code compromised +25
Wordfence Intelligence Weekly WordPress Vulnerability Report (June 17, 2024 to June 23, 2024) 4 days, 4 hours ago | www.wordfence.com
all in bounty bug bug bounty +22
Developer Accounts Compromised Due to Credential Reuse in WordPress.org Supply Chain Attack 4 days, 21 hours ago | www.wordfence.com
accounts attack aware compromised +29
WordPress 6.5.5 Security Release – What You Need to Know 6 days, 3 hours ago | www.wordfence.com
all in bounty bug bug bounty +18
Supply Chain Attack on WordPress.org Plugins Leads to 5 Maliciously Compromised WordPress Plugins 1 week ago | www.wordfence.com
attack aware code compromised +24
Wordfence Intelligence Weekly WordPress Vulnerability Report (June 10, 2024 to June 16, 2024) 1 week, 4 days ago | www.wordfence.com
all in bounty bug bug bounty +22

Jobs in InfoSec / Cybersecurity

Find Talent

Data Loss Prevention Analyst 1

@ Advanced Energy | Quezon City, 00, PH, n/a
View on infosec-jobs.com

TC-CS-DPP MS Purview-Staff

@ EY | Bengaluru, KA, IN, 560048
View on infosec-jobs.com

Consultant CSIRT Confirmé H/F (Paris)

@ EY | Paris La Défense, FR, 92037
View on infosec-jobs.com

Consultant Azure Cloud Sécurité CSPM H/F (Paris)

@ EY | Paris La Défense, FR, 92037
View on infosec-jobs.com

Consultant en Protection des Données (Microsoft Purview) H/F (Paris)

@ EY | Paris La Défense, FR, 92037
View on infosec-jobs.com

Business Continuity Coordinator

@ Sumitomo Mitsui Banking Corporation | Brea, CA, US, 92821
View on infosec-jobs.com