WordPress plugin suite hacked to push malware to thousands of sites
Over Security - Cybersecurity news aggregator [Unofficial]
April 15, 2026
More than 30 WordPress plugins in the EssentialPlugin package have been compromised with malicious code that allows unauthorized access to websites running them.
Discussion in the ATmosphere