One of the really interesting things about providing support and maintenance for lots and lots of sites is that you get to see patterns or certain issues affecting several sites, that you might not notice if you’re only responsible for a handful of sites.Not only does this add to our knowledge base of solutions when a customer has a problem, but it can sometimes allow us to preemptively find a problem before a customer even knows they have it (or point it out when we do a FREE site audit).Anyway, here’s a request we’ve recently gotten from a couple of customers:Is our web site compromised?!Our hosting provider says that we’ve been sending hundreds of e-mails a day that are setting off alarms with their SPAM filter.Please help!!!!It turns out that none of the affected websites were hacked — it was just a matter of spammers taking advantage of a particular WordPress maintenance support plans plugin: “Print Mail” a sub-plugin of Print.It’s not a security vulnerability – they’re using normal features of the plugin, just at scale with automation.If you use this plugin on any of your sites, or are considering enabling it, please read on for an explanation of the problem and some possible solutions.
Source: New feed