Security researchers have discovered evidence that suggests that two recently patched vulnerabilities in a popular WordPress themes package are being actively exploited.
Analysts at Wordfence, who develop security solutions including plugins to protect the popular content management system (CMS), believe that over 100,000 unpatched installations of the themes are in the crosshairs of hackers.
“We are seeing these vulnerabilities being actively exploited in the wild, and we urge users to update to the latest versions available immediately since they contain a patch for these vulnerabilities,” appeal the researchers as they share evidence of exploitation.
We’re looking at how our readers use VPN for a forthcoming in-depth report. We’d love to hear your thoughts in the survey below. It won’t take more than 60 seconds of your time.
Wordfence believes the threat actors have chained together the two…