Top WordPress Slider plugin hijacked to spread malware — here's what to look out for

Nextendweb, the maintainers of Smart Slider 3, recently published a new security advisory, saying that on around April 7, 2026, unidentified threat actors broke into the system used for distributing ...

Supply chain blast: Top npm package backdoored to drop dirty RAT on dev machines

Updated: Hijacked maintainer account let attackers slip cross-platform trojan into 100M-downloads-a-week Axios ...

Around 500,000 WordPress websites could be at risk from crucial plugin security flaw — here's what we know

Hackers can read arbitrary files, including those containing passwords, with this newly discovered WordPress flaw.