Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
  • Immediate Help
Login
Login

New Customer?

Sign up now.
  • Submit a ticket
  • Knowledge base
  • Chat now

Browsing Tag

WordPress Plugins and Themes

304 posts
Fake Spam Plugin Uses Victim’s Domain Name to Evade Detection
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Fake Spam Plugin Uses Victim’s Domain Name to Evade Detection

  • Kayleigh Martin
  • July 2, 2025
During our investigation of an SEO spam infection (spam content designed to manipulate search engine results), we discovered a nicely crafted plugin that named itself…
Read the Post
Sucuri Vulnerability Roundup - June 2025
  • Security Advisory
  • Security Education
  • WordPress Security

Vulnerability & Patch Roundup — June 2025

  • Sucuri Malware Research Team
  • June 30, 2025
Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…
Read the Post
Stealthy WordPress Malware Drops Windows Trojan via PHP Backdoor
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Stealthy WordPress Malware Drops Windows Trojan via PHP Backdoor

  • Puja Srivastava
  • June 27, 2025
Last month, we encountered a particularly interesting and complex malware case that stood out from the usual infections we see in compromised WordPress websites. At…
Read the Post
The Case of Hidden Spam Pages
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

The Case of Hidden Spam Pages

  • Ben Martin
  • June 25, 2025
Spammy posts and pages being placed on WordPress websites is one of the most common infections that we come across. The reason being is that…
Read the Post
Malicious WordPress Plugin Creates Hidden Admin User Backdoor
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Malicious WordPress Plugin Creates Hidden Admin User Backdoor

  • Matt Morrow
  • June 20, 2025
I recently wrote about a case where a malicious plugin was used to steal admin credentials. Here we will examine yet another malicious plugin that…
Read the Post
Analysis of a Malicious WordPress Plugin The Covert Redirector
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Analysis of a Malicious WordPress Plugin: The Covert Redirector

  • Puja Srivastava
  • June 18, 2025
A few weeks ago, we received a support request from a website owner who was experiencing unexpected redirects. Visitors landed on the website normally, but…
Read the Post
Fake WordPress Caching Plugin Used to Steal Admin Credentials
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Fake WordPress Caching Plugin Used to Steal Admin Credentials

  • Matt Morrow
  • June 4, 2025
A common trend we see is that bad actors will upload malicious plugins to WordPress sites. These plugins serve a wide variety of functions from…
Read the Post
Sucuri WordPress Vulnerability Roundup May 2025
  • Security Advisory
  • Security Education
  • WordPress Security

Vulnerability & Patch Roundup — May 2025

  • Sucuri Malware Research Team
  • May 30, 2025
Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…
Read the Post
Fake Java Update Popup Found in Malicious WordPress Plugin
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Fake Java Update Popup Found in Malicious WordPress Plugin

  • Puja Srivastava
  • May 27, 2025
We recently assisted a customer who reported a persistent and concerning “Java Update” pop-up appearing on their WordPress website. This type of deceptive notification is…
Read the Post
Fake Google Meet Page Tricks Users into Running PowerShell Malware
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Fake Google Meet Page Tricks Users into Running PowerShell Malware

  • Puja Srivastava
  • May 23, 2025
Last month, a customer reached out to us after noticing suspicious URLs on their WordPress site. Visitors reported being prompted to perform unusual actions. We…
Read the Post
Another Fake CloudFlare Infection Targets WordPress
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Another Fake Cloudflare Verification Targets WordPress Sites

  • Kayleigh Martin
  • May 21, 2025
A new Cloudflare infection has once again been targeting WordPress sites. This new iteration of malware mimics a legitimate-looking Cloudflare verification page, which then tricks…
Read the Post
Search
Sucuri Sidebar Malware Removal to Signup Page
Sucuri Logo

Let’s Connect

Products
Website Firewall Website Security Platform WordPress Security Website Backups Hack Assistance Pricing
Solutions
DDoS Protection Malware Detection Malware Removal Malware Prevention Blacklist Removal SEO Spam Removal
USE CASES
Developers Ecommerce Agency Plans Enterprise Services HTTPS/2 Virtual Patching
Support
Knowledge Base SiteCheck Guides Research Labs Report Abuse Status Report
Company
About Sucuri Contact Blog Referral Partners Testimonials
Terms of Use Privacy Policy Do Not Sell My Personal Information Frequently Asked Questions

© 2025 GoDaddy Mediatemple, Inc., d/b/a Sucuri. All rights reserved.

back to top

'