Someone planted backdoors in dozens of WordPress plugins used in thousands of websites - BERITAJA
By: Albert Michael - Wednesday, 15 April 2026 01:31:34 • 2 min read
Someone planted backdoors in dozens of WordPress plugins used in thousands of websites - BERITAJA is one of the most discussed topics today. In this article, you will find a clear explanation, key facts, and the latest updates related to this topic, presented in a concise and easy-to-understand way. Read more news on Beritaja.
Image Credits:Bryce Durbin / TechCrunch11:31 AM PDT · April 14, 2026
Dozens of plugins for the wide utilized unfastened root web blogging package WordPress are now offline aft a backdoor was discovered successful them, utilized to push malicious codification to immoderate website that relied connected the plugins. The backdoor was discovered aft a caller firm proprietor bought these plug-ins.
Anchor Hosting laminitis Austin Ginder sounded the siren in a blog station past week describing a proviso concatenation onslaught connected a WordPress plugin shaper called Essential Plugin. Ginder said personification past twelvemonth bought Essential Plugin and the backdoor was soon added to the plugins’ root code. The backdoor sat dormant until earlier this period erstwhile it activated and began distributing malicious codification to immoderate website pinch the plugins installed.
Essential Plugin says connected its website that it has complete 400,000 plugin installs and much than 15,000 customers. WordPress’s plugin instal page says the affected plugins are successful complete 20,000 progressive WordPress installations.
Plugins let owners of WordPress-based websites to widen the site’s functionality, but successful doing truthful assistance the plugins entree to their installations, which could unfastened these websites to malicious extensions and imaginable compromise. But Ginder warned that WordPress users are not notified of immoderate plugins’ alteration successful ownership, exposing users to imaginable takeover attacks by their caller owners.
According to Ginder, this is the second hijack of a WordPress plugin discovered successful arsenic galore weeks. Security researchers person long warned of the risks of malicious actors buying package and changing its codification successful bid to discuss a ample number of computers about the world.
While the plugins have been removed from WordPress’ directory and now database their closure arsenic “permanent,” Ginder warned that WordPress owners should cheque if they still person 1 of the malicious plugins installed and region it. Ginder has a database of the affected plugins in the blog post.
Representatives for Essential Plugin did not respond to a petition for comment.
Zack Whittaker is the information editor astatine TechCrunch. He besides authors the play cybersecurity newsletter, this week successful security.
He could beryllium reached via encrypted connection astatine zackwhittaker.1337 connected Signal. You could besides interaction him by email, aliases to verify outreach, astatine zack.whittaker@beritaja.com.
Related News
Subscribe
This article discusses Someone planted backdoors in dozens of WordPress plugins used in thousands of websites - BERITAJA in detail, including key facts, recent developments, and important insights that readers are actively searching for online.
