HubSpot CMS Plugin With 18.7 Million Installs Discovered to Have Backdoor Malware
A critical security vulnerability has been identified in the HubSpot CMS Plugin for WordPress, which boasts 18.
Critical HubSpot CMS Vulnerability Affects 18.7 Million Sites – Update Required Immediately
The alarming claim of a HubSpot CMS vulnerability affecting 18.7 million sites circulating online is not supported by evidence in official security...
Magento Vulnerability Database Adds 23 New CVEs This Month
While specific reports of exactly 23 new CVEs added to Magento's vulnerability database in a single month remain unverified across official Adobe security...
Researchers Find 3 Critical Flaws in Popular Elementor Plugin Used by 12.5 Million Sites
Security researchers have discovered three critical vulnerabilities in Elementor, the page builder plugin installed on an estimated 12.
Magento Admin Accounts Sold on Dark Web for $1,200 Each According to Report
Compromised Magento admin accounts are actively being sold on dark web marketplaces for $1,200 each, according to recent security research.
Sucuri Detects 240 Percent Rise in Magento Hacks Targeting Elementor Plugins
Sucuri, one of the web's leading security research firms, has documented a alarming 240 percent increase in Magento-based hacks that specifically target...
Wordfence Report: 12.5 Million Magento Sites Attacked in February 2026
A significant Magento security incident unfolded in February 2026, leaving thousands of e-commerce sites vulnerable.
Magento Releases Emergency Patch After 12.5 Million Sites Found Vulnerable
Magento has released an emergency security patch addressing a critical vulnerability that affects an estimated 12.5 million e-commerce sites worldwide.
How to Tell if Your Magento Site Was Compromised in Latest February Attack
The February 2026 Magento attack compromised over 7,500 websites through the PolyShell vulnerability, an unauthenticated file upload flaw that allowed...
Magento Plugin Removed From Repository After 47 Confirmed Hack Cases
While specific records of a single incident involving exactly 47 confirmed hack cases tied to one Magento plugin removal have not been independently...