WordPress Redirect Plugin – Hidden Backdoor Discovered | Uganda National Computer Emergency Response Team-National Cert

Scope: WordPress (Affected Redirect Plugin)

Severity: Red

A widely used WordPress redirect plugin was found to contain a long-dormant hidden backdoor enabling unauthorized administrative access under specific conditions. Exploitation allows attackers to execute arbitrary code, redirect or modify website content, inject malware, and exfiltrate sensitive user data. Site owners should remove or update the affected plugin immediately, audit for unauthorized users and files, and rotate all administrative credentials.

The Uganda National CERT and Coordination Center (CERT.UG/CC) encourages users and administrators to review the recommendations and apply the necessary updates.

RELATED ADVISORIES

Advisories 4 May 2026

Broken VECT 2.0 Ransomware – Destructive Wiper Behavior Observed

Scope: Enterprise Endpoints and File Systems

Severity: Red

Broken VECT 2.0 ransomware has evolved beyond financial extortion, now functioning as a destructive data wiper that corrupts or permanently destroys large files, rendering recovery impossible even after ransom payment. This shift in behavior dramatically increases the impact severity, as organizations face irreversible data loss with no viable recovery path through attacker cooperation. Organizations should ensure secure, offline, and immutable backups are maintained, deploy EDR solutions, enforce MFA for remote access, and segment networks to contain lateral spread.

FortiOS & Atlassian Confluence Actively Exploited (CVE-2024-21762 / CVE-2023-22527)

Advisories 4 May 2026

SAP NPM Supply Chain Compromise – Malicious Packages Stealing Developer Credentials

Advisories 4 May 2026

Axios npm Package Backdoored by North Korean Threat Actor (UNC1069)

Advisories 1 April 2026

Citrix NetScaler ADC/Gateway — Active Exploitation (CVE-2026-3055)

Advisories 1 April 2026

SAP S/4HANA code-injection (CVE-2025-42957) now under active exploitation

Advisories 23 September 2025

Microsoft Exchange 2016 & 2019 Reach End of Support in 30 Days

Advisories 23 September 2025