Wordfence, a WordPress security company, announced on December 9, 2021, "1.6 Million WordPress Sites Hit With 13.7 Million Attacks In 36 Hours From 16,000 IPs". 

The plugins in question are:
  • PublishPress Capabilities <= 2.3
  • Kiwi Social Plugin <= 2.0.10
  • Pinterest Automatic <= 4.14.3
  • WordPress Automatic <= 3.53.2

The following are the affected Epsilon Framework theme versions:
  • Shapely <=1.2.8
  • NewsMag <=2.4.1
  • Activello <=1.4.1
  • Illdy <=2.1.6
  • Allegiant <=1.2.5
  • Newspaper X <=1.3.1
  • Pixova Lite <=2.0.6
  • Brilliance <=1.2.9
  • MedZone Lite <=1.2.5
  • Regina Lite <=2.0.5
  • Transcend <=1.1.9
  • Affluent <1.1.0
  • Bonkers <=1.0.5
  • Antreas <=1.0.6
  • NatureMag Lite – No patch known. Recommended to uninstall from site.

How do you know if you your site has been infected?  

Review the user accounts on your site to see if there are any unauthorized user accounts. Remove any detected user accounts immediately.  Also patch/update any of the plugins or themes listed above.


Tired of worrying about whether or not your WordPress site will be next?  Contact MyBizNow today by scheduling a call to discuss your web needs.