Is it me or do we see any type of pattern here? Thankfully, “Wordfence” is on the job, 24/7. This is my kind of plug in!
Nothing to see here, folks …
“Backdoor in Captcha Plugin Affects 300K WordPress Sites”
“The WordPress repository recently removed the plugin Captcha over what initially appeared to be a trademark issue with the current author using “WordPress” [Editors note: the original page has been removed, we’re now linking to a screen shot.] in their brand name.
Whenever the WordPress repository removes a plugin with a large user base, we check to see if it was possibly due to something security-related. Wordfence alerts users when any plugin they are running is removed from WordPress repo as well. At the time of its removal, Captcha had over 300,000 active installs, so its removal significantly impacts many users.”
Incredible analysis in the below link. Nicely done by WordFence.
Memo to self: be sure to double check updated WordPress plugins immediately after doing the update!
It is like stating the obvious, but nonetheless very important to remember the above. I just updated the Captcha and WordFence plugins. I saw an error, but remembered to check the Plugins section to verify they are running. Once activated the plugins are fine. Some seem to need this, while others activate ‘automagically’.