Hackers Exploit Critical Breeze Cache WordPress Plugin Vulnerability

Breeze Cache WordPress plugin vulnerability fuels wave of attacks

Security researchers report that the Breeze Cache WordPress plugin contains an unauthenticated file‑upload flaw that cybercriminals are weaponising across thousands of sites. Within hours of disclosure, exploit kits began targeting the bug, allowing threat actors to drop web shells and ransomware payloads.

“We see active exploitation in the wild, and compromised sites are being used as pivot points for broader campaigns,” said a lead analyst at Reuters.

WordPress administrators are urged to disable the plugin immediately or apply the pending patch released by the developer. The flaw bypasses all standard authentication checks, meaning any remote attacker can upload arbitrary files to the server’s root directory. Experts warn that the attack surface expands as more plugins depend on Breeze’s caching engine. Bloomberg notes that similar vulnerabilities have historically caused ↓ 30% surge in compromised WordPress sites during peak exploitation windows. Immediate remediation includes removing the plugin, scanning for malicious files, and rotating all credentials. Failure to act could expose sensitive user data and degrade site integrity.

Reported by Kaelen Frost (Lead Cybersecurity Analyst).