WordPress.org has reset all passwords on its site following a security scare.
“Earlier today the WordPress team noticed suspicious commits to several popular plugins (AddThis, WPtouch, and W3 Total Cache) containing cleverly disguised backdoors,” wrote Matt Mullenweg, founder of WordPress's parent firm Automattic, in a blog post. “We determined the commits were not from the authors, rolled them back, pushed updates to the plugins, and shut down access to the plugin repository
No comments:
Post a Comment