WordPress scam
-
Not sure where to report this but I received an email from my wordpress site advising me to download a plugin to fix a vulnerability. It really looks legit and it almost tricked me but I found it odd to have to download a plugin and also the website it links to is ca.en<span style=”text-decoration: underline;”>-</span>www.ads-software.com (notice the dash in the URL:
Dear user
The WordPress Security Team has detected a critical vulnerability on the website: <u>store.beatate.ca</u>
The Remote Code Execution (RCE) vulnerability found on your site is categorized as a critical threat, potentially allowing malicious code execution and putting your data, user details, and overall site security at risk.
We urge you to apply the CVE-2024-46188 Patch immediately, as we are working on addressing this crucial security hole in the upcoming WordPress version.
Simply download the plugin by clicking the button below, install and activate it on your site. This ensures swift and hassle-free defense against potential exploits and malicious actions linked to this vulnerability.
-
This is becoming a big issue as the email looks like its from WordPress, they include the logo and email layout.
[URL removed by moderator]
Clients are receiving message and if they do not have email protection they are taking by phishing exploit
This link is potentially harmful
- The topic ‘WordPress scam’ is closed to new replies.