No, not a joke. I am looking out for you and your assets. Received in an email today:
Our Threat Intelligence team is tracking a series of attacks against an unpatched vulnerability in the Rich Reviews plugin for WordPress. The estimated 16,000 sites running the plugin are vulnerable to unauthenticated plugin option updates, which can be used to deliver stored cross-site scripting (XSS) payloads. Attackers are abusing this exploit chain to inject malvertising code which creates redirects and popup ads associated with a known campaign.
In today’s post we’ll share brief details of the zero-day flaw, some notes on the attacks against it, and our recommendations for moving forward.
Managing Numerous Sites? If you’re managing more than one WordPress site, make your life easier with Wordfence Central. All of your sites’ alerts and Wordfence settings can be managed in one place. Try Wordfence Central; it’s free.
If you would like to stop receiving WordPress security alerts and product updates from Wordfence, please use the “unsubscribe” link at the bottom of this email. You subscribed to this list via the Wordfence security plugin for WordPress.
If you aren’t already a member, you can subscribe to our WordPress Security and Product Updates mailing list here. You’re welcome to republish this email in part or in full, provided that you mention that the source is www.wordfence.com. If you would like to get Wordfence for your WordPress website, simply go to your “Plugin” menu, click “add new” and search for “wordfence”.
Defiant, Inc. 800 5th St STE 4100 Seattle WA 98104 United States
You received this email because you are subscribed to Wordfence Security Mailing List from Defiant, Inc..
Find Your Imagination at #yobiworks! Serving the community with outreach: Find Your Art Day, 1st Sun of every month 2-6pm, and Art Night, the 3rd Sunday of every month 5-9pm. We will soon be launching Find Your Art Kids! Keep an eye on yobiworks.art for more.
The Original DIY Animator, I am transitioning from over 22 years in the Operations and Logistics profession, and have jumped into the DEEP end of my original plans, laid down when I joined the Marine Corps and did my duty of Service to the people of the United States.
Seems I am not ready for my service to end, if I ever was, so I live and podcast, hold art and vocal collaborative workshops, create commissioned artwork, do photography, writing, and just about anything I can squeeze into a day!
If there is one thing I would advise, it would be to first, "Stop watching that television! Why watch lives lived, when you can live life, and give?"