Researchers discovered a WordPress Exploit in a plugin designed to help site owners comply with the GDPR that enables attackers to take control of admin accounts.
Approximately 200,000 websites running WordPress have been affected by a malware attack that used the Display Widgets plug-in to collect IP addresses.
Google is rolling out a number of protections to combat phishing attacks through plug-ins. These verification steps will help users practice due diligence.
A flaw in the Unity Web Player plug-in puts gamer data at risk, but this is just the tip of the iceberg. How do companies defend against plug-in problems?