Nearly 7K WordPress Sites Compromised by Balada Injector

Recent data has revealed that nearly 7 thousand WordPress websites have been compromised due to the Balada Injector, and alarmingly close to 200 thousand could become victims of the same issue, thanks to the vulnerability known as CVE-2023-6000 that lurks in the popular plugin “PopUp Builder”. WordPress, the company managing one of the biggest content management systems in the digital ecosystem, serves as the main victim here, but indirectly so do the individuals and entities managing the affected sites. This situation emphasizes the crucial need for regular website maintenance and rigorous security checks, particularly for platforms using third-party plugins that could potentially conceal threatening vulnerabilities.

Published: Wed, 17 Jan 2024 16:00:00 GMT