(403) 488-3333

WordPress 4.7.2 was released two weeks ago, which includes a fix for a severe vulnerability in the WordPress REST API. This vulnerability is starting to be exploited in the wild. In less than 48 hours after the vulnerability was disclosed, multiple public exploits began being shared and posted online. With that information easily available, the internet-wide probing and exploit attempts began.

Attackers are using the vulnerability to deface websites but posting rouge blog posts:

The fix is simple: Update your WordPress core files to the latest version – 4.7.2. For any questions on this, or to have Partek do this for you, please contact us.