https://ap7i.com/tags/wordpress/ Recent content in WordPress on ap7i.com Hugo en-us Thu, 16 Apr 2026 11:24:17 -0400 https://ap7i.com/posts/wordpress-supply-chain-attacks-april-2026/ Thu, 16 Apr 2026 11:24:17 -0400 https://ap7i.com/posts/wordpress-supply-chain-attacks-april-2026/ Between April 5 and April 7, two unrelated supply chain attacks compromised WordPress sites through the one channel admins are trained to trust: plugin updates. One hijacked Nextend’s update servers to push a weaponized Smart Slider 3 Pro build to 800,000+ installations. The other activated dormant backdoors in 30+ plugins an attacker had quietly purchased on Flippa a year earlier.