
Security Alert: Popular Website Building Tools Under Attack Worldwide
Hackers are targeting vulnerabilities in common website platforms. If you run a small business website or blog, you need to update your software immediately.
Source
BleepingComputer
Original headline: Australia warns of global campaign targeting vulnerable CMS platforms
Plain-English summary by GetCyberRight. Read the full report at the source above.
The Australian Cyber Security Centre has issued a global alert about hackers actively exploiting weaknesses in content management systems (CMS) and their plugins. These are the software tools that power millions of websites, including those used by small businesses, community groups, school clubs, and personal blogs.
Attackers are scanning the internet for websites running outdated versions of these platforms to break in. This primarily affects people who manage their own websites using platforms like WordPress, Joomla, Drupal, or similar tools. If you run a website for your business, church group, sports team, or personal blog, your site could be vulnerable if you have not kept the software updated. The risk is especially high if you use plugins or extensions to add features to your site.
- Log into your website's admin panel and check for available updates. Install all updates for your core platform and every plugin you use.
- Remove any plugins or themes you are not actively using.
- If you are unsure how to update your site, contact your web hosting company's support team for help.
- Change your website admin password to something strong and unique.
- Enable two-factor authentication if your platform offers it. Going forward, make website updates part of your monthly routine, just like paying bills. Set a calendar reminder to check for updates on the first of each month. Consider using a web hosting service that automatically updates your software, or hire a professional to maintain your site if you are uncomfortable doing it yourself. An outdated website is like leaving your front door unlocked. Regular maintenance keeps intruders out.
Curated from trusted cybersecurity sources by GetCyberRight
Source: BleepingComputerStay ahead of cyber threats
Get our free weekly digest. Real threats, plain language, what to do about them. No spam, ever.
More articles

International Operation Arrests 28 in Child Exploitation Cases
Law enforcement across seven countries arrested suspects involved in child sexual exploitation using cryptocurrency and the dark web.
2 min read
International Police Operation Leads to 28 Arrests for Child Exploitation
Police across seven countries arrested 28 people for crimes against children online. The operation shows how criminals use cryptocurrency and the dark web.
2 min read
Popular Developer Tool Compromised With Malicious Software. Users Need to Act
A software package used by website developers was hacked to secretly install data-stealing software on computers. This affects developers who installed version 8.14.0.
2 min read
Dangerous Software Package Infected Computers During Installation
A popular developer tool called jscrambler was hijacked. If anyone in your household does coding or web development, read this carefully.
2 min read