THREAT OPS › Threat News › PSA: Supply Chain Compromise Targets ShapedPlugin, Backdoored Pro Plugins Distributed via Official Channels
PSA: Supply Chain Compromise Targets ShapedPlugin, Backdoored Pro Plugins Distributed via Official Channels
<p>The Wordfence Threat Intelligence Team was notified on June 11th, 2026 of a potential supply chain compromise affecting ShapedPlugin, a WordPress plugin vendor with over 400,000 active free plugin installations. Fortunately, Wordfence customers have already had malware signature detection for the particular backdoor used in this attack.</p> <p>During our investigation, we discovered that attack
MITRE ATT&CK techniques
Indicators of compromise
- 0e17c869d3e4586d4c160041042bd15123c2a37117a98a995fae885f0f4417fcsha256
- d0f349c04c2a3578a65b7e17bcabc84152a61b12sha1
- c015b25f4b00f9ae6a87b98fb54ff6f4md5
- e268c35a06d85f672e70c9beecb4e5d1md5
- CVE-2026-10735cve
- CVE-2026-49777cve
- https://www.cve.org/CVERecord?id=CVE-2026-10735url
- https://www.cve.org/CVERecord?id=CVE-2026-49777url
- 194.76.217.28ipv4
- www.gravatar.comdomain
- wordpress.orgdomain
- account.shapedplugin.comdomain
- generate.2faplugin.orgdomain
- 2faplugin.orgdomain