A warning has been issued against WordPress users to update a plugin that had introduced a critical security flaw. The General Data Protection (GDPR) compliance plugin allowed users to easily ensure that users accepted cookies when visiting the website and had the option to allow or disallow their information to be supplied to third parties.
The vulnerability has since been fixed in version 1.8.3, and WordPress users are strongly encouraged to check their website dashboard for plugins, particularly the General Data Protection (GDPR) compliance plugin and ensure these are the updated to the latest version available.
Weak credentials and outdated features (e.g. plugins) are the two most common methods of website compromise, and we strongly recommend that you only allow the necessary users access to the website administration dashboard, with a strong password to reinforce this access control. Similarly, make sure that your website is regularly updated, we recommend a weekly basis for this.