Bleeping Computer

WordPress REST API Flaw Used to Install Backdoors

Attackers have found a way to escalate the benign WordPress REST API flaw and use it to gain full access to a victim's server by installing a hidden backdoor. On January 26, the WordPress team ...

Hackers exploit auth bypass flaw in Burst Statistics WordPress plugin

Hackers are leveraging a critical authentication bypass vulnerability in the WordPress plugin Burst Statistics to obtain ...
Bitdefender

Burst Statistics flaw opens WordPress sites to admin takeover

Hackers are exploiting CVE-2026-8181 in Burst Statistics to hijack WordPress sites. Users should update to version 3.4.2 now.
Arabian Post

Burst flaw raises website takeover risk

A critical flaw in the Burst Statistics WordPress plugin has put more than 200,000 websites at risk of unauthorised administrator access, intensifying concern over the security of third-party tools ...
TechCrunch

Authy Brings Two-Factor Authentication To Self-Hosted WordPress Sites (Updated)

If you run your own WordPress site, chances are you are using a pretty secure password to keep hackers from posting random stories to your blog. Still, even the best password isn’t as good as using ...