A years-long campaign by miscreants to insert malicious JavaScript into vulnerable WordPress sites, so that visitors are redirected to scam websites, has been documented by reverse-engineers.

An investigation by analysts at Sucuri into malware found on WordPress installations revealed a much larger and ongoing campaign that last month, we’re told, hijacked more than 6,600 websites. The team has seen a spike in complaints this month related to the intrusions, according to analyst Krasimir Konov.

“The websites all shared a common issue — malicious JavaScript had been injected within their…

Cybersecurity researchers have disclosed a massive campaign that’s responsible for injecting malicious JavaScript code into compromised WordPress websites that redirects visitors to scam pages and other malicious websites to generate illegitimate traffic.

“The websites all shared a common issue — malicious JavaScript had been injected within their website’s files and the database, including legitimate core WordPress files,” Krasimir Konov, a malware analyst at Sucuri, said in a report published Wednesday.

This involved infecting files such as jquery.min.js and jquery-migrate.min.js…

For the first time in WordPress’ nearly 19-year history, the software’s usage stats are showing signs of declining market share. Its remarkable ascension to 43.3% market share took a turn in March 2022 and usage has slowly declined since then, according to a new WordPress market share report from Joost de Valk that references stats from W3Techs.

In a post titled “WordPress’ Market Share Is Shrinking,” de Valk highlighted the numbers from the last few months, which now conclusively demonstrate a decline:

Our remediation and research teams regularly find malicious redirects on client sites. These infections automatically redirect site visitors to third-party websites with malicious resources, scam pages, or commercial websites with the intention of generating illegitimate traffic.

As outlined in our latest hacked website report, we’ve been tracking a long-lasting campaign responsible for injecting malicious scripts into compromised WordPress websites. This campaign leverages known vulnerabilities in WordPress themes and plugins and has impacted an enormous number of websites over the…

Since CAPTCHA was first introduced, it has undergone various iterations and evolutions. With each step, the aim always has been to make it easier for humans and more challenging for non-humans to pass the test. Over time, this led to several different types of CAPTCHA checks being used.

CAPTCHA tests must also consider accessibility features such as screen readers used by visually impaired people. Since these function like a bot, it can make the entire process somewhat counterintuitive. Even so, this has been one of the motivators behind the evolution of CAPTCHA checks.

It is also…

And another theme shop hops on the block bandwagon. Catch Themes’ first block-based theme, Catch FSE, landed on WordPress.org over the weekend.

The company is one of the most prolific authors in the official WordPress theme directory, touting a total of 109 themes. There are only a few others with such an impressive body of work, at least in sheer numbers. Averaging over 10 new releases each year for the last decade is no small feat, and that just accounts for the company’s free themes.

At a time when WordPress is still in a transitioning phase between classic, PHP-based themes…

If you want the freedom to shape your WordPress website to your heart’s content, you might be considering shifting it from WordPress.com to WordPress.org. However, before starting with the steps you’ll want to make, let’s clear up the differences between WordPress.com and WordPress.org. 

The main difference between WordPress.com and WordPress.org is that with WordPress.com you’ll get a web hosting service while with WordPress.org you’ll have to find one on your own and install WordPress software on it. So, in short, WordPress.com is easier to start out with, but it offers less…

If you want the freedom to shape your WordPress website to your heart’s content, you might be considering shifting it from WordPress.com to WordPress.org. However, before starting with the steps you’ll want to make, let’s clear up the differences between WordPress.com and WordPress.org. 

The main difference between WordPress.com and WordPress.org is that with WordPress.com you’ll get a web hosting service while with WordPress.org you’ll have to find one on your own and install WordPress software on it. So, in short, WordPress.com is easier to start out with, but it offers less…

This sponsored article was created by our content partners, BAW Media. Thank you for supporting the partners who make SitePoint possible.

Animation isn’t like other web design trends that come and go. For the last few years, this trend has demonstrated how useful it is in improving the user experience. From engagement to entertainment, there’s a lot that can be done with animation on a website.

Web designers currently have a number of ways to animate WordPress websites, like CSS animations and embedded GIFs. So why has BeTheme added a new Lottie animation feature inside its BeBuilder?…

If you own a WordPress website, you will be very familiar with the upside/downside of its plugins. The upside of course is that they allow you to customise your website exactly the way you want to. The downside is finding the right plugin among the 60 000 options.

Luckily, there are plenty of helpful online guides. Along with the list of WordPress plugins we shared recently, we think the following are worth checking out:

1. WPForms – for effortless form creation

Forms are a great tool to include on your website as it’s an easy way to obtain contact information, gain e-mail…