WordPress forces user conf organizers to share social media credentials, arousing suspicions

October 28, 2024 at 02:36AM Organizers of WordCamps have been ordered by Automattic employees to take down social media posts and share login credentials, amidst tensions over WordPress’s control and rival WP Engine’s contributions. This has led to volunteer frustration and concerns over community engagement and autonomy, harming events like WordCamp Sydney. ### Meeting Takeaways: … Read more

WP Engine Accuses WordPress of ‘Forcibly’ Taking Over Its Plug-in

October 15, 2024 at 10:24AM A public dispute has erupted between WP Engine and WordPress founder Matt Mullenweg over the Advanced Custom Fields (ACF) plug-in, following Mullenweg’s decision to fork ACF into Secure Content Fields (SCF). This has led to user confusion regarding updates, security issues, and potential legal actions between the companies. ### Meeting … Read more

Hackers target WordPress database plugin active on 1 million sites

January 25, 2024 at 09:22AM The ‘Better Search Replace’ WordPress plugin, used by over one million sites, has a critical vulnerability allowing attackers to execute malicious code. Exploits have surged, prompting the release of version 1.4.5 to address this flaw. Urgent upgrading is recommended as attacks are growing, impacting all versions up to 1.4.4. Based … Read more