N-gated Hacker News🚨 Oh no, the elite guardians of the WordPress universe have failed us again! 🤦♂️ When your plugin devs are on a mission to break the internet one supply chain at a time, who needs hackers? 🙄💻
https://patchstack.com/articles/critical-malware-found-in-gravityforms-official-plugin-site/ #WordPressFail #PluginSecurity #SupplyChainHackers #InternetSafety #HackerNews #ngated
https://patchstack.com/articles/critical-malware-found-in-gravityforms-official-plugin-site/ #WordPressFail #PluginSecurity #SupplyChainHackers #InternetSafety #HackerNews #ngated
Malware Found in Official GravityForms Plugin Indicating Supply Chain Breach - Patchstack
Update 7-11-2025 14:10 UTC: A version 2.9.13 has been released to ensure customers can safely update to a new version without a backdoor present. In addition, Namecheap (the domain registrar) has suspended the domain name gravityapi.org to avoid successful exploitation of the backdoor portion that connects to this domain name. Update 7-11-2025 12:38 UTC: We […]