I got a few email alerts from Word­fence about mali­cious scripts on this site. Turns out one of the plu­g­ins installed here had ben sold on and was inject­ing javascript onto every page. Crit­i­cal Prob­lems: * File con­tains sus­pect­ed mal­ware URL: wp-content/plugins/widget-logic/WidgetLogicAdminConfig.php The mali­cious URL matched This was an alert that I saw whilst scan­ning my …

Read recovering this blog from a wordpress plugin attack →