{"id":16547,"date":"2023-12-04T23:13:35","date_gmt":"2023-12-04T23:13:35","guid":{"rendered":"https:\/\/wordpress.org\/news\/?p=16547"},"modified":"2023-12-04T23:22:04","modified_gmt":"2023-12-04T23:22:04","slug":"alert-wordpress-security-team-impersonation-scams","status":"publish","type":"post","link":"https:\/\/wordpress.org\/news\/2023\/12\/alert-wordpress-security-team-impersonation-scams\/","title":{"rendered":"Alert: WordPress Security Team Impersonation Scams"},"content":{"rendered":"\n
The WordPress Security Team is aware of multiple ongoing phishing scams impersonating both the \u201cWordPress team\u201d and the \u201cWordPress Security Team\u201c in an attempt to convince administrators to install a plugin on their website which contains malware.<\/p>\n\n\n\n
The WordPress Security Team will never email you requesting that you install a plugin or theme on your site, and will never ask for an administrator username and password.<\/strong><\/p>\n\n\n\n If you receive an unsolicited email claiming to be from WordPress with instructions similar to those described above, please disregard the emails and indicate that the email is a scam to your email provider.<\/p>\n\n\n\n These emails link to a phishing site that appears to be the WordPress plugin repository on a domain that is not owned by WordPress or an associated entity. Both Patchstack<\/a> and Wordfence<\/a> have written articles that go in to further detail.<\/p>\n\n\n\n Official emails from the WordPress project will always:<\/p>\n\n\n\n\n
@wordpress.org<\/code> or
@wordpress.net<\/code> domain.<\/li>\n\n\n\n