Hackers are targeting WordPress websites running a vulnerable version of the WP Maps Pro plugin, which allows creating rogue ...

CVE-2026-8732 in WP Maps Pro lets unauthenticated attackers create admin accounts on 15,000+ WordPress sites. Wordfence blocked 2,858 attacks in 24 hours.

WordPress 7.0 “Armstrong,” released May 20, 2026, arrived without the real-time collaborative editing feature that had been its stated centerpiece for months — and within two days of launch, a securit ...

Funnel Builder WordPress plugin is being exploited to steal people's credit cards but the flaw has since been patched.

The best AI website builders promise fast site creation, but which actually deliver? We tested 12 platforms in 2026 for SEO, ...

A new malware campaign has compromised nearly 2,000 WordPress websites by using Steam Community profile comments to hide ...

Threat actors are attempting to actively exploit a critical security flaw impacting WP Maps Pro, a WordPress plugin that has had over 15,000 sales on the Envato Market, to create malicious ...

A popular WordPress plugin is once again being leveraged in website takeover attacks.

Nearly 2,000 WordPress websites were infected with malware that relies on Steam Community profile comments to hide command-and-control (C2) data.

Jason Fernando is a professional investor and writer who enjoys tackling and communicating complex business and financial problems. Gordon Scott has been an active investor and technical analyst or ...

Weekly ThreatsDay recap: old bugs, fake tools, shady payload tricks, AI mishaps, and the usual reminder that the internet is ...

Researchers warn CVE‑2026‑26980, a critical SQL injection flaw in Ghost CMS (score 9.4), is being exploited in a large ...