This is Malcolm Peralty here from PressTitan and this is The WP Minute, Episode 147
Simple Social Buttons had a security vulnerability that let people take over entire sites. ZDnet has all of the details. It looks like up to 40,000 sites were at risk of having someone be able to modify site settings and even installing backdoors or taking over admin accounts. There is already a patch for this, so if you are using Simple Social Buttons, please upgrade now, and don’t forget to double check that your site wasn’t compromised. If you don’t know how to do this, please reach out.
Unfortunately, this isn’t the first or last time something like this will happen, so check out the article on LearnWoo that talks about security issues in WordPress plugins and how to solve or at least mitigate some of the risks. Of course, the best tip is to stay updated and of course, have good, long term backups of your site.
If you are going to make a plugin, you should hopefully maintain it, and that’s what the latest article on TorqueMag is all about. It even points out where you can get help with plugin security, so please check that out.
Next, we have a major plugin that received an update, Yoast SEO is now on version 9.6 and that comes with some improved code. The update makes Yoast SEO faster, easier to maintain and even better, more secure. Is there a theme to this episode?
That’s it for today’s WP Minute, thank you all for watching.