Someone bought 30 WordPress plugins and planted a backdoor in all of them

vomayank • yesterday at 1:33 AM

[dead]

jerukmangga • yesterday at 12:16 AM

[dead]

aaabbbb • yesterday at 3:08 PM

[dead]

rapidslug • last Monday at 9:16 PM

[dead]

neuzhou • yesterday at 5:15 AM

[dead]

cookiengineer • yesterday at 3:22 AM

The fun part is that Google Safebrowsing doesn't even flag the malicious company's website.

And on their pricing page they offer all plugins as a bundle for 0 USD per year! What a steal! /s

Don't click on this, I would assume it may contain malware: https://essentialplugin[.]com/pricing/

EGreg • last Monday at 7:10 PM

[flagged]

➕ show 3 replies

photochemsyn • last Monday at 10:44 PM

[flagged]

➕ show 1 reply

nullbyte • last Monday at 6:27 PM

[flagged]

➕ show 1 reply

cold_tom • last Monday at 8:24 PM

[flagged]

➕ show 1 reply

alt Hacker News