WP Automatic WordPress plugin hit by millions of SQL injection attacks

April 25, 2024, 2:27 p.m. | Bill Toulas

BleepingComputer www.bleepingcomputer.com

Hackers have started to target a critical severity vulnerability in the WP Automatic plugin for WordPress to create user accounts with administrative privileges and to plant backdoors for long-term access. [...]

access accounts administrative privileges attacks automatic backdoors critical hackers injection injection attacks millions plugin privileges security severity sql sql injection target vulnerability wordpress wordpress plugin

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

Iranian hackers pose as journalists to push backdoor malware 7 hours ago | www.bleepingcomputer.com

actor apt42 attacks backdoor +20

Android bug can leak DNS traffic with VPN kill switch enabled 1 day ago | www.bleepingcomputer.com

android android devices block bug +15

Android bug leaks DNS queries even when VPN kill switch is enabled 1 day ago | www.bleepingcomputer.com

android android devices block bug +14

NSA warns of North Korean hackers exploiting weak DMARC email policies 1 day, 2 hours ago | www.bleepingcomputer.com

apt43 attacks authentication dmarc +19

Google rolls back reCaptcha update to fix Firefox issues 1 day, 4 hours ago | www.bleepingcomputer.com

back bug captcha firefox +11

NATO and EU condemn Russia's cyberattacks against Germany, Czechia 1 day, 5 hours ago | www.bleepingcomputer.com

apt28 campaign countries cyber +14

Microsoft rolls out passkey auth for personal Microsoft accounts 1 day, 6 hours ago | www.bleepingcomputer.com

accounts auth authenticate biometric +20

CEO who sold fake Cisco devices to US military gets 6 years in prison 1 day, 23 hours ago | www.bleepingcomputer.com

ceo cisco companies counterfeit +14

Bitwarden launches new MFA Authenticator app for iOS, Android 2 days, 1 hour ago | www.bleepingcomputer.com

android android devices app authenticator +12

Senior Security Officer

@ eSimplicity | Remote

View on infosec-jobs.com

Senior - Automated Cyber Attack Engineer

@ Deloitte | Madrid, España

View on infosec-jobs.com

Public Key Infrastructure (PKI) Senior Engineer

@ Sherwin-Williams | Cleveland, OH, United States

View on infosec-jobs.com

Consultant, Technology Consulting, Cyber Security - Privacy (Senior) (Multiple Positions) (1502793)

@ EY | Chicago, IL, US, 60606

View on infosec-jobs.com

Principal Associate, CSOC Analyst

@ Capital One | McLean, VA

View on infosec-jobs.com

Real Estate Portfolio & Corporate Security Lead

@ Lilium | Munich

View on infosec-jobs.com

View more jobs

all InfoSec news

WP Automatic WordPress plugin hit by millions of SQL injection attacks

More from www.bleepingcomputer.com / BleepingComputer

Jobs in InfoSec / Cybersecurity

Senior Security Officer

Senior - Automated Cyber Attack Engineer

Public Key Infrastructure (PKI) Senior Engineer

Consultant, Technology Consulting, Cyber Security - Privacy (Senior) (Multiple Positions) (1502793)

Principal Associate, CSOC Analyst

Real Estate Portfolio & Corporate Security Lead