Welp, hackers are at it again! Very recently, multiple WordPress Plugins became vulnerable to attacks and the issue has been escalated to WordPress developers to make a global upgrade available ASAP.
I just had someone contact me who had 3 of her sites hacked yesterday.
Some of the most popular plugins that have been affected include:
- Jetpack
- Google Analytics by Yoast
- All In One SEO
- Gravity Forms
- WPTouch
- …among many others
You can read more about the security threat here >> (warning: very techy article)
Now what?
Step 1. Scan your site to see if your site has been hacked.
Step 2. Upgrade your WordPress site and all plugins immediately and stay on top of upgrades over the next two weeks at least. Make SURE you back up your website in case the upgrade breaks something on your website.
Step 3. Need our team to upgrade your site and make sure you are fully secure? Read the 12-pt checklist I go through to make sure your site is secure and at the bottom of the article, you’ll see two options for hiring us to immediately protect your website.
Stay on top of these updates. When your website gets hacked it’s not just a mess to clean up but it can be an expensive mess (assuming your site is recoverable).
As a last note, that’s once again why I strongly suggest WP Engine as a website hosting company for WordPress users. They are extremely secure AND if your website gets hacked they fix it for you for free! No other company I’ve heard of offers that level of service.
To get a quote to move your website to WP Engine simply reply to this email and I’d be happy to help.
All 10 of my sites are hosted by WP Engine and it is so comforting to know I will not have an issue with this latest risk.
Let me know any questions! 🙂
– Amber
