New Malware Disguises as Anti-Malware Plugin on WordPress - 1

Image by Souvik Banerjee, from Unsplash

New Malware Disguises as Anti-Malware Plugin on WordPress

  • Written by Kiara Fabbri Former Tech News Writer
  • Fact-Checked by Sarah Frazier Former Content Manager

A new WordPress malware disguised as an anti-malware plugin grants attackers remote access, with updated security measures being rolled out by Wordfence.

In a rush? Here are the quick facts:

  • New malware, “WP-antymalwary-bot.php,” disguises itself as an anti-malware plugin on WordPress.
  • Malware grants attackers access to site dashboards and executes remote code.
  • Attackers can inject malicious JavaScript and redirect visitors to harmful sites.

A new variant of malware has been discovered on WordPress sites, disguised as a legitimate anti-malware plugin. Identified by Wordfence security analysts as “WP-antymalwary-bot.php,” this malware allows attackers to access site dashboards while remaining invisible to admin views, and as a result, it enables the remote execution of harmful code.

The malware was first detected by Wordfence on January 22, 2025, during a routine site cleanup.The plugin functions as an ordinary WordPress tool yet contains a backend command feature that enables attackers to perform administrator logins.

The malware maintains contact with a Command & Control (C&C) server, allowing attackers to issue remote commands. It also enables attackers to distribute malware by adding malicious JavaScript code to other directories.

To make matters worse, Wordfence reports that the malware hides itself from the WordPress plugin list, making it even harder for website owners to spot. It also uses the WordPress task scheduler to maintain its presence on the site. This means that if the malicious plugin is removed, the malware can simply reappear after the site is visited again.

The malware also communicates with a server in Cyprus, reporting back information and possibly receiving further instructions. Wordfence reports that new versions of the malware continue to emerge, including one that schedules regular events to keep the attack going.

Experts recommend WordPress users stay vigilant and update their security plugins.

Meta Launches Standalone AI App to Compete with ChatGPT - 2

Image by Brett Jordan, from Unsplash

Meta Launches Standalone AI App to Compete with ChatGPT

  • Written by Kiara Fabbri Former Tech News Writer
  • Fact-Checked by Sarah Frazier Former Content Manager

Meta launched a standalone AI assistant app using Llama 4, offering personalized voice chat, smart glasses support, and optional social sharing features.

In a rush? Here are the quick facts:

  • Meta launched a standalone AI app powered by its Llama 4 model.
  • The app personalizes replies using your Facebook and Instagram data.
  • Meta AI app integrates with Ray-Ban smart glasses and desktop.

Meta announced that it has released a new standalone app for its AI assistant, Meta AI, aiming to rival ChatGPT and Google’s Gemini. Previously available only inside WhatsApp, Instagram, Facebook, and Messenger, Meta AI can now be accessed directly through its own app.

The system allows users to get answers to questions, produce images, and maintain voice dialogues with enhanced voice functionality. The assistant improves over time by storing information about user preferences—including food choices and hobbies—to deliver customized responses.

According to Meta, the platform can provide better personalized responses because it already holds extensive user data from years of Facebook and Instagram usage. The company explained that Meta AI learns about users, so its responses become more useful. These customized features remain available only to users in the U.S. and Canada.

Users browsing the Discover feed of Meta AI can view or share creative AI-generated interactions by asking the assistant to generate emoji descriptions of themselves. All data remains private unless users explicitly choose to share it.

Those who begin a conversation on one device can seamlessly continue it on another, thanks to the app’s integration with Meta’s AI-powered Ray-Ban glasses. The same features are also accessible through the web-based version of the service.

Experts advise users to remain vigilant when using these tools. The assistant expands Meta’s data collection, as the company leverages this information to support its advertising business model, as noted by TechCrunch.

Meta has announced it will use public posts and chatbot interactions from EU users to train its AI, despite earlier privacy concerns that delayed the rollout. In response to pressure from regulators and advocacy groups, Meta now provides an opt-out form for users who object to data usage.

While Meta claims its AI investment will help better reflect Europe’s languages and cultures, the project continues to raise ethical concerns. Meta also previously faced criticism for launching AI-generated profiles on Instagram and Facebook , which many users found deceptive and manipulative.

Meta plans to test a paid version of the AI later this year. For now, the free app is available in select countries, including the U.S., Canada, Australia, and New Zealand.