Update WP Plugins and Change WordPress Password ASAP

Those of you who installed the following plugins: AddThis, WPtouch, and W3 Total Cache on their self-hosted WordPress blogs, should change their WordPress passwords as soon as possible.
Wordpress discovered that the mentioned plugins contains cleverly disguised backdoors. The backdoors might offer access to the dashoboard but using a different URL, and using a password known to the hacker (but not to the blog owner!).
The problem is that those plugins are among the most popular ones and thousands of self hosted wordpress blogs are in real trouble (AddThis and W3 Total Cache- 0.5 mln downloads, and WPTouch 2 mln!).
ok, so what to do? Updated all your plugins first- their latest versions contain all necessery bug fixes, then go to your WP setting and chanage the password.
I would also suggest to scan you website with Sucuri, which checks your website for malware so you are sure that all is clean.
Cheers,
Mags

Mags Sikora

I'm Mags, an SEO Consultant, London

  • https://www.macrobusinesscapital.com/ Business Loan

    I am really worries about security of my blog. My WordPress blog has been hacked two times in a week and I didn’t find any reason behind it. It shopped when I change the password of database and wprdpress admin. I am thinking about how wordpress allowed these kind of plugins with backdoors.

  • https://www.macrobusinesscapital.com/ Business Loan

    I am really worries about security of my blog. My WordPress blog has been hacked two times in a week and I didn’t find any reason behind it. It shopped when I change the password of database and wprdpress admin. I am thinking about how wordpress allowed these kind of plugins with backdoors.