Massive WordPress Supply Chain Attack: 31 Plugins Compromised After Silent Malware Injection
tech2geek.net [Unofficial]
April 17, 2026
A supply chain attack hit WordPress plugins via Flippa, injecting malware into 31 plugins. Sites remain infected even after official updates.
Discussion in the ATmosphere