BuddyBoss supply chain attack (Incident)

The report documents a full‑spectrum supply‑chain campaign against the BuddyBoss WordPress plugin/theme pipeline: the adversary compromised vendor infrastructure and the update mechanism to distribute trojanized updates that implanted server‑side PHP backdoors. Those backdoors enabled credential and database exfiltration, reverse shells, centralized data collection (including admin credentials and API/payment keys), and persistent remote control across hundreds of affected sites; the actor also leveraged AI assistance to accelerate payload development and operations.