If your website is using WordPress, heads up! Word is that a massive wave of attacks is targeting those technologies as you read this. The linked article at BleepingComputer lists all of the applications and technologies being impacted. Primarily, this affects websites using the Epsilon Framework.
In most cases the attackers are updating the “users can register” option to default to “administrator,” which opens the door to attackers to assume the role of administrator for the site being attacked.
As is often the case in attacks like these, the best defense is to update your plugins and themes ASAP.
Questions? Concerns? Get in touch with us at firstname.lastname@example.org.