Dataconomy
  • News
    • Artificial Intelligence
    • Cybersecurity
    • DeFi & Blockchain
    • Finance
    • Gaming
    • Startups
    • Tech
  • Industry
  • Research
  • Resources
    • Articles
    • Guides
    • Case Studies
    • Whitepapers
    • AI Models Leaderboard
  • AI toolsNEW
  • Newsletter
  • + More
    • Glossary
    • Conversations
    • Events
    • About
      • Who we are
      • Contact
      • Imprint
      • Legal & Privacy
      • Partner With Us
Subscribe
No Result
View All Result
  • AI
  • Tech
  • Cybersecurity
  • Finance
  • DeFi & Blockchain
  • Startups
  • Gaming
Dataconomy
  • News
    • Artificial Intelligence
    • Cybersecurity
    • DeFi & Blockchain
    • Finance
    • Gaming
    • Startups
    • Tech
  • Industry
  • Research
  • Resources
    • Articles
    • Guides
    • Case Studies
    • Whitepapers
    • AI Models Leaderboard
  • AI toolsNEW
  • Newsletter
  • + More
    • Glossary
    • Conversations
    • Events
    • About
      • Who we are
      • Contact
      • Imprint
      • Legal & Privacy
      • Partner With Us
Subscribe
No Result
View All Result
Dataconomy
No Result
View All Result

Dozens of WordPress plug-ins removed after backdoor discovered

The affected plug-ins have been removed from WordPress' directory and their closure is being labeled as "permanent."

byKerem Gülen
April 15, 2026
in Cybersecurity, News
Home News Cybersecurity
Share on FacebookShare on TwitterShare on LinkedInShare on WhatsAppShare on e-mail
Google Preferred Source

Dozens of WordPress plug-ins went offline following the discovery of a backdoor that delivered malicious code to users. The issue arose after the corporate acquisition of the plug-in maker Essential Plugin, prompting security concerns.

Austin Ginder, founder of Anchor Hosting, detailed the supply chain attack in a blog post. He stated that a backdoor was added to the plug-ins’ source code soon after last year’s acquisition. This backdoor remained inactive until earlier this month when it began distributing malicious code to websites utilizing the affected plug-ins.

Essential Plugin claims over 400,000 plug-in installs and more than 15,000 customers, while the affected plug-ins have been installed on more than 20,000 active WordPress installations, according to WordPress’ plug-in install page. Although plug-ins enhance the functionality of WordPress websites, they also pose a security risk by allowing access to installations, potentially leading to breaches.

Stay Ahead of the Curve!

Don't miss out on the latest insights, trends, and analysis in the world of data, technology, and startups. Subscribe to our newsletter and get exclusive content delivered straight to your inbox.

Ginder emphasized that WordPress users lack notifications regarding changes in plug-in ownership, which increases the risk of takeover attacks. According to him, this incident marks the second hijacking of a WordPress plug-in in two weeks. Security researchers have expressed concerns about the dangers posed by malicious actors acquiring software to alter its code for widespread compromise.

The affected plug-ins have been removed from WordPress’ directory and their closure is being labeled as “permanent.” Ginder urged WordPress site owners to verify and remove any remaining malicious plug-ins installed on their websites. A list of these plug-ins is available in his blog post. Essential Plugin representatives did not respond to a request for comment.


Featured image credit

Tags: wordpress

Related Posts

OpenAI launches GPT-Live voice models for ChatGPT

OpenAI launches GPT-Live voice models for ChatGPT

July 9, 2026
DuckDuckGo browser now blocks most YouTube video ads

DuckDuckGo browser now blocks most YouTube video ads

July 9, 2026
Samsung Galaxy Z Flip 8 and Z Fold 8 renders leak

Samsung Galaxy Z Flip 8 and Z Fold 8 renders leak

July 9, 2026
Amazon is reportedly building a more agentic Alexa

Amazon is reportedly building a more agentic Alexa

July 9, 2026
Google launches AI-powered Video Remix tool in Google Photos

Google launches AI-powered Video Remix tool in Google Photos

July 9, 2026
X to DM users when their posts receive a Community Note

X to DM users when their posts receive a Community Note

July 9, 2026

LATEST NEWS

OpenAI launches GPT-Live voice models for ChatGPT

DuckDuckGo browser now blocks most YouTube video ads

Samsung Galaxy Z Flip 8 and Z Fold 8 renders leak

Amazon is reportedly building a more agentic Alexa

Google launches AI-powered Video Remix tool in Google Photos

X to DM users when their posts receive a Community Note

BEST AI MODELS LEADERBOARD

See the best AI models, ranked by intelligence, benchmark results, speed and token price. Find the most suitable LLMs, Text-to-Image, Image Editing, Text-to-Speech, Text-to-Video and Image-to-Video  artificial intelligence model for your tasks and business.

LATEST TOOLS

Leadfwd

AI RoastBot

Bit.ai

Pikzels

Aflow

Chai AI

OpenRead

TTS Monster

Learvo

BraintrustData

Dataconomy

COPYRIGHT © DATACONOMY MEDIA GMBH, ALL RIGHTS RESERVED.

  • About
  • Imprint
  • Contact
  • Legal & Privacy

Follow Us

  • News
    • Artificial Intelligence
    • Cybersecurity
    • DeFi & Blockchain
    • Finance
    • Gaming
    • Startups
    • Tech
  • Industry
  • Research
  • Resources
    • Articles
    • Guides
    • Case Studies
    • Whitepapers
    • AI Models Leaderboard
  • AI tools
  • Newsletter
  • + More
    • Glossary
    • Conversations
    • Events
    • About
      • Who we are
      • Contact
      • Imprint
      • Legal & Privacy
      • Partner With Us
No Result
View All Result
Subscribe

This website uses cookies to improve your experience. You can choose to accept or reject them. Visit our Privacy Policy.