Deactivate The Social Warfare Plugin ASAP!
This is a very short post but it has important information about a security issue. About one hour ago information was published about earlier today hackers injected malicious code into the popular WordPress Plugin Social Warfare. If you installed this plugin, deactivate it ASAP. Otherwise, your site will be taken to malicious sites. KEEP IT DEACTIVATED until a patch is released.
Join FREE & Launch Your Business!
Exclusive Bonus - Offer Ends at Midnight Today
00
Hours
:
00
Minutes
:
00
Seconds
2,000 AI Credits Worth $10 USD
Build a Logo + Website That Attracts Customers
400 Credits
Discover Hot Niches with AI Market Research
100 Credits
Create SEO Content That Ranks & Converts
800 Credits
Find Affiliate Offers Up to $500/Sale
10 Credits
Access a Community of 2.9M+ Members
Recent Comments
77
Boy glad I haven't done that yet. I am still recovering from a Russian hack to my computer. Scared the ....... out of me. But it was verified through google. 30 days plus without my computer, needed to wipe it clean, and reinstall all my programs, and had to add a strong firewall.
This is getting pretty scary.
Have to keep a watchful eye.
See more comments
Join FREE & Launch Your Business!
Exclusive Bonus - Offer Ends at Midnight Today
00
Hours
:
00
Minutes
:
00
Seconds
2,000 AI Credits Worth $10 USD
Build a Logo + Website That Attracts Customers
400 Credits
Discover Hot Niches with AI Market Research
100 Credits
Create SEO Content That Ranks & Converts
800 Credits
Find Affiliate Offers Up to $500/Sale
10 Credits
Access a Community of 2.9M+ Members
Where can this be verified? I can't find any info about this security breach anywhere.
From WordFence (about two hours ago):
“Earlier today, an unnamed security researcher published a full disclosure of a stored Cross-Site Scripting (XSS) vulnerability present in the most recent version of popular WordPress plugin Social Warfare. The plugin, which was subsequently removed from the http://WordPress.org plugin repository, has an active install base of over 70,000 sites. The flaw allows attackers to inject malicious JavaScript code into the social share links present on a site’s posts, and is under active attack in the wild.
We've just published a brief PSA including recommendations for impacted site owners.”
https://www.wordfence.com/blog/2019/03/unpatched-zero-day-vulnerability-in-social-warfare-plugin-exploited-in-the-wild/
Thanks so much!
You’re welcome!
Tom