WordPress plugins contain backdoor, thousands affected

Dozens of WordPress plugins, used by thousands of websites, have been taken offline due to a discovered backdoor. The vulnerability was introduced after a new owner acquired the plugins and inserted malicious code into their source. This backdoor remained dormant until recently, when it began distributing harmful code to any site using the affected plugins. This incident highlights the risks associated with software supply chain attacks and changes in plugin ownership, as users are not always notified, potentially exposing them to security compromises.