If your website was designed in WordPress and you are one of those who use Jetpack, then you may have noticed that a patch was installed without even asking your permission.
The reason for this is simple: the famous plugin, used by millions of users, has indeed recently suffered a critical vulnerability.
A critical vulnerability invites itself in JetPack
JetPack is now an inseparable tool from WordPress. If, by any chance, you had never heard of it until now, know that it allows you, among other things, to make backups of your site in complete safety, or even to accurately measure its traffic. . It also provides you with means to optimize the referencing of your content in addition to protecting you from possible attacks. It is undoubtedly a very complete plugin, free (unless you opt for one of the paid formulas) and which today has no less than 5 million followers.
However, JetPack was recently the target of a critical vulnerability discovered by the developers of Automattic, the company responsible for the development of WordPress. This vulnerability affects all versions of JetPack since version 2.0 released in 2012. According to an Automattic maintainer, it ” could be used by site authors to manipulate any WordPress installation file “.
For your security, WordPress forces the deployment of a patch
In version 12.1.1 of JetPack, the developers of Automattic took the opportunity to publish a patch aimed at eliminating the threat as quickly as possible. As the site informs us BleepingComputer, it was automatically deployed on all WordPress sites using the famous plugin. Within just a few hours, the patch had already been rolled out to nearly all JetPack users.
If most of the vulnerable sites have therefore logically been updated to the latest version of the plugin, remember to make sure that this is indeed the case on your side. In the past, there have been times when WordPress releases automatic updates. The objective of this approach is obviously to prevent vulnerabilities from being actively exploited by cyberattackers.
See the offer
8
- Quick learning
- Thousands of themes
- Almost 60,000 extensions
WordPress is the undisputed star of the web. Its ergonomics, the richness of its templates (reactive, free or paid), the myriad of extensions, its referencing capacities are attractive. The other side of the coin, it concentrates most of the cyberattacks and quickly becomes slow. WordPress site owners have a tendency to accumulate useless plugins, often without updating them. Depending on the needs of the company or the individual, it is therefore necessary to check the relevance of this CMS.
WordPress is the undisputed star of the web. Its ergonomics, the richness of its templates (reactive, free or paid), the myriad of extensions, its referencing capacities are attractive. The other side of the coin, it concentrates most of the cyberattacks and quickly becomes slow. WordPress site owners have a tendency to accumulate useless plugins, often without updating them. Depending on the needs of the company or the individual, it is therefore necessary to check the relevance of this CMS.
Source : BleepingComputer
Do you want to create a website, personally or professionally? The content manager (or CMS) has become essential. There are hundreds of CMS on the market: free, open source, paid, hosted… A real headache to distinguish them. Here is our selection of the best CMS to create your site easily!
Read more
1