At least 1 million websites that run on WordPress have been infected by a campaign that uses rafts of WordPress plug-in and theme vulnerabilities to inject malicious code into sites, including a hefty ...

The dispute between WordPress founder Matt Mullenweg and hosting provider WP Engine continues, with Mullenweg announcing that WordPress is “forking” a plug-in developed by WP Engine. Specifically, ...

Organizations using WordPress plug-in Advanced Custom Fields (ACF) are in the middle of an ugly and very public dispute between WP Engine (WPE), the maker of the plug-in, and Matt Mullenweg, the ...

Dozens of plug-ins for the widely used open source web blogging software WordPress are now offline after a backdoor was discovered in them, used to push malicious code to any website that relied on ...

Quick question: Do you know what IFC, The New York Post, The Walt Disney Company, and WNBA have in common? Ponder the answer for a moment, as the tie that binds the four organizations isn't obvious.

WordPress.com sites now have an easier way to integrate with the Fediverse, including Mastodon. Automattic, the company behind WordPress.com, Tumblr and other web publishing tools, is the new owner of ...

Attackers can abuse a loophole in the Wordpress plug-in WPForms to reverse payments, for example. Six million websites use the plug-in. The Wordpress plug-in WPForms is one of the most popular ...

Jack Wallen walks you through the process of integrating Jotform into WordPress for easier signups, registrations, lead generation and more. Jotform is one of the most powerful form services on the ...

Many WordPress websites could be at risk of compromise if their administrators don’t upgrade a popular search engine optimization (SEO) plug-in to a newly released version that fixes serious ...

Users of the 'All in One SEO Pack' plug-in should update as soon as possible, security researchers from Sucuri warn Many WordPress websites could be at risk of compromise if their administrators don’t ...