Dozens of WordPress plugins were allegedly hijacked to push malware after they were sold to a new corporate owner.

Dozens of WordPress plugins were taken offline after a suspected supply-chain attack involving a malicious backdoor added ...

Dozens of WordPress plug-ins have been pulled after a hidden backdoor reportedly exposed thousands of websites to malicious ...

An attacker purchased 30+ WordPress plugins on Flippa, planted backdoors that lay dormant for eight months, then activated ...

WordPress's massive installed base isn't going anywhere, but many developers and AI agents are not opting for the product for new sites. Will they go for Cloudflare instead? Cloudflare on Wednesday ...

More than 20,000 WordPress sites were compromised after malicious plugins with hidden backdoors spread harmful code, raising ...

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...

CVE-2026-33626 exploited within 13 hours of disclosure, enabling SSRF-based cloud credential theft and internal scanning.

Goodbye and good riddance to all of those infuriatingly unmaintainable legacy balls of mud. Modern, bespoke replacements are ...

Last year, the best we could say about AI website builders is they had potential. This year, we found some that can actually ...