> TritonInfoSec News
Home / Jun 17, 2026 / Story
0
#10 BleepingComputer general June 15, 2026 at 17:37 UTC

OptinMonster WordPress plugin hacked in CDN supply-chain attack

By Bill Toulas

AI Summary

WordPress plugins OptinMonster, TrustPulse, and PushEngage were compromised in a CDN-level supply chain attack targeting Awesome Motive's content distribution infrastructure. Because the malicious code was injected at the CDN layer rather than the plugin source, all sites using the affected CDN-served versions received the tampered files regardless of plugin update status.

Read full article → https://www.bleepingcomputer.com/news/security/opt…

Relevance score: 74.0/100

# More from June 17

  1. 1
    Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week The Hacker News
  2. 2
    China-Linked SprySOCKS Backdoor Expands to Windows with Driver-Based Stealth The Hacker News
  3. 3
    Cisco Releases Security Updates for Actively Exploited SD-WAN Manager Flaw The Hacker News
  4. 4
    Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails The Hacker News
  5. 5
    One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes The Hacker News
  6. 6
    Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages SecurityWeek
  7. 7
    CISA Flags LiteSpeed cPanel Plugin Flaw Exploited for Root Privilege Escalation The Hacker News
  8. 8
    Ransomware gang abuses Microsoft Teams relays to hide malicious traffic BleepingComputer
  9. 9
    Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware The Hacker News