Backdoored Smart Slider 3 Pro Update Distributed via Compromised Nextend Servers

Unknown threat actors have hijacked the update system for the Smart Slider 3 Pro plugin for WordPress and Joomla, pushing a poisoned version containing a backdoor to unsuspecting users.

The incident specifically impacts Smart Slider 3 Pro version 3.5.1.35 for WordPress, according to WordPress security company Patchstack, highlighting the potential vulnerability of popular plugins.

Smart Slider 3 is a widely used WordPress slider plugin, boasting more than 800,000 active installations across its free and Pro versions, making it a lucrative target for malicious actors.

The compromised update underscores the importance of maintaining robust security measures, especially for plugins with large user bases, to prevent the distribution of backdoored software.

As the cybersecurity landscape continues to evolve, incidents like the backdoored Smart Slider 3 Pro update serve as a reminder of the need for vigilance and proactive security practices among developers and users alike.

Source: Original Article

Press ESC to close

Share Article:

Tarang Parmar

Google Enhances Chrome Security with DBSC on Windows

EngageLab SDK Security Vulnerability Puts 50M Android Users at Risk