Chat with Softimpact

SoftImpact

A Very Popular WordPress Plugin with 600K Installs Hacked by Ex-Employee

A Very Popular WordPress Plugin with 600K Installs Hacked by Ex-Employee

January 23, 2019

WordPress translation plugin WPML (also known as WordPress MultiLingual) received an email this weekend from a hacker claiming to expose serious security vulnerabilities in the software that allegedly put the customers’ own websites at risk.

WPML plugin is used to write content in multiple languages and translate content without any need of technical or programming skills. English, Spanish, French, German, Italian and Dutch are the most popular languages on WPML. As per their site, the plugin is currently used by more than 600K WordPress websites.

The attacker, which the WPML team claims is a former employee, sent out a mass email to all the plugin's customers. In the email, the attacker claimed he was a security researcher who reported several vulnerabilities to the WPML team, which were ignored.

After hacking the WPML website, the attacker sent the following email to every user:
 

The company says that in response to the attack it has rebuilt its website and ensured that access to administrator accounts is now controlled by two-factor authentication (2FA). Furthermore, WPML says that it has “minimized the access that the web server has to the file system.”

WPML further underlined in its advisory that no payment information had been compromised and that the popular WordPress plugin does not contain a vulnerability. Customers have been advised to reset their passwords.
 
 
 
 

N.B:

Custom software development ensures that your software will be able to handle all your daily processes. Personalized software can be as complex or intuitive as you like, and this makes it the ideal choice for businesses of all sizes. When you have software that is designed to do exactly what you want it to do, it helps make your day easier.

One of the biggest advantages you get with custom software is a reliable, efficient technical support plan. You'll have full access to a technical support team familiar with the development process of your application, giving an efficient solution to all the problems you encounter. Custom software also offers more security with minimal chances of intrusion or compromise, due to the fact that hackers are not familiar with the system as they are with popular off-the-shelf software.

Designing and Developing high-quality websites tailored to your needs.

In every project, we keep the same clear goals in mind: speed, security, SEO, and usability across all platforms.

KEEP YOUR WEBSITES AND DATA SAFE WITH SOFTIMPACT TAILOR-MADE SOLUTIONS!


LET’S START A NEW PROJECT TOGETHER!



January 18, 2024

The terms UI (User Interface) and UX (User Experience) are frequently used, often interchangeably. However, they represent distinct facets of the design process, each contributing to the overall success of a digital product. Understanding the...

January 03, 2024

Amidst global tensions and ongoing stressors, Pantone's unveiling of the color of the year for 2024, PANTONE 13-1023 Peach Fuzz, offers a calming refuge. This gentle peach hue, reminiscent of velvety peaches and soft textures, embodies a call...

December 30, 2023

Mark Zuckerberg's metaverse vision and Sam Altman's AI chatbot in 2022 and 2023 respectively set the stage for two prevailing themes: the convergence of AI and the metaverse and the introduction of powerful XR headsets.

December 20, 2023

The holiday season is upon us, and it's time to celebrate the developers who craft the digital world we live in. Whether they are coding wizards, aspiring tech enthusiasts, or seasoned professionals, finding the perfect gift for the developer...

November 28, 2023

Sending voice messages has become a norm in our digital conversations, yet many recoil from the prospect of listening to their own recorded voices, especially on platforms like WhatsApp. The discomfort is widespread, prompting curiosity about the...

Load More Load More
Softimpact. All Rights Reserved © 2024 | Privacy Policy

GET IN TOUCH

SITEMAP

© 2024, Softimpact. All Rights Reserved | Privacy Policy

COME FOR A CHAT
COFFEE ON US...

Aamal Center, 6th floor,
Barbar Abou Jaoude Street
Jdeideh Highway - Lebanon
Contact Phone Tel: +961 1 890 888
Fax: +961 1 890 999
2, Genevis Street,
GENEVA COURT, Flat 301
3116 Limassol - Cyprus
Contact Phone Tel: +357 25 338 379
Fax: +357 25 338 379

FOLLOW US ON