SHAPEDPLUGIN UPDATE SYSTEM BREACHED IN SUPPLY CHAIN ATTACK

Attackers compromised ShapedPlugin's update infrastructure to distribute malware-infected versions of multiple WordPress plugins to paying customers. The attack leveraged the vendor's official update system, affecting users who downloaded affected releases.