Harmonic Design Launches HDAnalytics: Privacy-First, Cookieless Analytics Built Natively for WordPress

HDAnalytics is a fast, cookieless WordPress analytics plugin delivering actionable insights, full GDPR/CCPA compliance, ...
Mashable

More than 14,000 WordPress sites hacked, used to spread malware

A new threat actor is targeting flawed WordPress sites using a new malware spreading technique. Credit: Filip Radwanski/SOPA Images/LightRocket via Getty Images WordPress is one of the most popular ...
The Hacker News

Hackers Exploit WordPress Sites to Power Next-Gen ClickFix Phishing Attacks

Cybersecurity researchers are calling attention to a nefarious campaign targeting WordPress sites to make malicious JavaScript injections that are designed to redirect users to sketchy sites. "Site ...
Searchenginejournal.com

2025 Core Web Vitals Challenge: WordPress Versus Everyone

The Core Web Vitals Technology Report shows the top-ranked content management systems by Core Web Vitals (CWV) for the month of June (July’s statistics aren’t out yet). The breakout star this year is ...
ZDNet

How I used ChatGPT to analyze, debug, and rewrite a broken plugin from scratch - in an hour

I am not a morning person, yet my alarm goes off at 5:30 am every day. This is because the editorial team I work with is on the East Coast, and I'm in Oregon. I do a quick check of email and Slack to ...
Searchenginejournal.com

Future-Proofing WordPress SEO: How To Optimize For AI-Driven Search Features

Search is changing. I hate saying that (again) because it feels cliche at this point. But, cliche or not, it is true and it is seismic. With the rollout of AI Overviews, Bing Copilot, and ...
TechRadar

WordPress sites targeted by malicious plugin disguised as security tool

Wordfence researchers uncover a new piece of WordPress malware Threat actors used AI to create legitimate-looking tools The malware pretends to be an anti-malware product Security researchers have ...
SecurityWeek

Threat Actors Deploy WordPress Malware in ‘mu-plugins’ Directory

Sucuri has discovered multiple malware families deployed in the WordPress mu-plugins directory to evade routine security checks. Malicious hackers have been caught hiding their WordPress malware in ...
Bleeping Computer

Malware campaign 'DollyWay' breached 20,000 WordPress sites

A malware operation dubbed 'DollyWay' has been underway since 2016, compromising over 20,000 WordPress sites globally to redirect users to malicious sites. The campaign has evolved significantly in ...
The Hacker News

Over 1,000 WordPress Sites Infected with JavaScript Backdoors Enabling Persistent Attacker Access

Over 1,000 websites powered by WordPress have been infected with a third-party JavaScript code that injects four separate backdoors. "Creating four backdoors facilitates the attackers having multiple ...
TechRadar

Over 10,000 WordPress sites found showing fake Google browser update pages to spread malware

Ten thousand WordPress websites were being used to deliver infostealing malware to victims running both Windows and macOS devices, experts have warned. A report from cybersecurity researchers at ...
Dark Reading

Swarms of Fake WordPress Plug-ins Infect Sites With Infostealers

Threat actors have taken a campaign that uses fake browser updates to spread malware to a new level, weaponizing scores of WordPress plug-ins to deliver malicious infostealing payloads, after using ...