{"id":239285,"date":"2026-06-19T02:18:35","date_gmt":"2026-06-19T07:18:35","guid":{"rendered":"https:\/\/lifeboat.com\/blog\/2026\/06\/shapedplugin-update-flow-hacked-to-infect-wordpress-sites"},"modified":"2026-06-19T02:18:35","modified_gmt":"2026-06-19T07:18:35","slug":"shapedplugin-update-flow-hacked-to-infect-wordpress-sites","status":"publish","type":"post","link":"https:\/\/lifeboat.com\/blog\/2026\/06\/shapedplugin-update-flow-hacked-to-infect-wordpress-sites","title":{"rendered":"ShapedPlugin update flow hacked to infect WordPress sites"},"content":{"rendered":"<p><a class=\"aligncenter blog-photo\" href=\"https:\/\/lifeboat.com\/blog.images\/shapedplugin-update-flow-hacked-to-infect-wordpress-sites.jpg\"><\/a><\/p>\n<p>Multiple WordPress plugins from ShapedPlugin were compromised in a supply chain attack that distributed infected releases to paying customers via the vendor\u2019s official update system.<\/p>\n<p>The malware delivered this way installed a fake plugin that impersonates WooCommerce components, steals credentials, and grants operators remote file-writing capabilities.<\/p>\n<p>ShapedPlugin is a WordPress plugin vendor specializing in front-end\/UI components and content display plugins, with a total active installation base of more than 400,000 for the free products.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Multiple WordPress plugins from ShapedPlugin were compromised in a supply chain attack that distributed infected releases to paying customers via the vendor\u2019s official update system. The malware delivered this way installed a fake plugin that impersonates WooCommerce components, steals credentials, and grants operators remote file-writing capabilities. ShapedPlugin is a WordPress plugin vendor specializing in front-end\/UI [\u2026]<\/p>\n","protected":false},"author":427,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[34],"tags":[],"class_list":["post-239285","post","type-post","status-publish","format-standard","hentry","category-cybercrime-malcode"],"_links":{"self":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/239285","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/users\/427"}],"replies":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/comments?post=239285"}],"version-history":[{"count":0,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/239285\/revisions"}],"wp:attachment":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/media?parent=239285"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/categories?post=239285"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/tags?post=239285"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}