Awesome-Motive

supply-chain 2026-06-21
OptinMonster CDN Supply-Chain Attack: Tampered SDK Backdoors WordPress Admins
Attackers stole an Awesome Motive CDN key and laced the OptinMonster, TrustPulse, and PushEngage SDKs with code that creates rogue admins and plants a web shell — on up to 1.2M fully-patched sites.
supply-chain wordpress cdn optinmonster awesome-motive backdoor credential-theft

OptinMonster CDN Supply-Chain Attack: Tampered SDK Backdoors WordPress Admins