Bleeping Computer

New GoTrim botnet brute forces WordPress site admin accounts

A new Go-based botnet malware named 'GoTrim' is scanning the web for self-hosted WordPress websites and attempting to brute force the administrator's password and take control of the site. This ...

A popular WordPress theme has a worrying security flaw which could allow full site takeover - here's what we know

Websites running the popular Service Finder Bookings WordPress theme are being actively targeted following the discovery of a ...
Bleeping Computer

New WordPress backdoor creates rogue admin to hijack websites

A new malware has been posing as a legitimate caching plugin to target WordPress sites, allowing threat actors to create an administrator account and control the site's activity. The malware is a ...
The Hacker News

Critical Exploit Lets Hackers Bypass Authentication in WordPress Service Finder Theme

The authentication bypass vulnerability, tracked as CVE-2025-5947 (CVSS score: 9.8), affects the Service Finder Bookings, a ...

Beware of These Dangerous WordPress Plugins Infecting Pakistani Websites

The Pakistan Telecommunication Authority (PTA) has issued a cybersecurity advisory warning website administrators and developers about multiple ...
TechJuice

PTA Issues Cybersecurity Warning Over Vulnerable WordPress Plugins

PTA warns website admins of critical flaws in popular WordPress plugins, urging immediate updates to prevent CSRF and XSS ...
TechRadar

This WordPress plugin grants hackers 'ultimate' admin access to your site

Thousands of WordPress sites could be at risk as a vulnerability in the Ultimate Member plugin gets exploited, but a quick fix will stop your site from being taken over. The plugin, which has amassed ...