WordPress Security Plugin Caught Logging Plaintext Passwords

Robert Reeve.
July 17, 2023

According to several reports, the All-In-One Security (AIOS) WordPress plugin has been logging plaintext passwords from user login attempts. The plugin, which is currently installed on more than one million Wordpress sites, was originally designed to prevent cyberattacks. Understandably, AIOS is now under heavy scrutiny for what many users call an unjustifiable breach of privacy, especially for a plugin that prides itself on security.

WordPress Security Plugin Caught Logging Plaintext Passwords.

Users identified the AIOS issue almost two weeks ago. Many began to complain about the problem on the plugin’s forums. In brief, the issue allowed any user with admin rights to access the login credentials of all other administrator users. Understandably, this has led to outrage among the AIOS community.

AIOS claims that the password-logging problem was the result of a bug. In response, the development team released an update, version 5.2.0, to address the issue and remove all logged passwords from their database. Although this change seems to have rectified the core problem, AIOS aren’t out of the woods yet. Many users report that version 5.2.0 is causing their websites to break. In addition, Wordpress statistics show us that hundreds of thousands of users are still using the vulnerable, outdated version of the plugin. Evidently, AIOS still has a long way to go to fully rectify their mistake.

The biggest question mark surrounding this whole situation is why AIOS is yet to step forward and recommend that all users change their passwords, especially if they utilize the same password for multiple sites. All in all, this is a worrying time for AIOS. Whether their reputation will recover from this event remains to be seen.


Robert Reeve

Robert is an experienced marketing professional with extensive experience working with brands to refine go-to-market plans, SEO campaigns, and content marketing strategies. A committed writer with a keen eye on the latest developments, Robert specialises in producing content across all things tech and marketing.

Read Next

20 Best New Websites, April 2024

Welcome to our sites of the month for April. With some websites, the details make all the difference, while in others,…

Exciting New Tools for Designers, April 2024

Welcome to our April tools collection. There are no practical jokes here, just practical gadgets, services, and apps to…

14 Top UX Tools for Designers in 2024

User Experience (UX) is one of the most important fields of design, so it should come as no surprise that there are a…

What Negative Effects Does a Bad Website Design Have On My Business?

Consumer expectations for a responsive, immersive, and visually appealing website experience have never been higher. In…

10+ Best Resources & Tools for Web Designers (2024 update)

Is searching for the best web design tools to suit your needs akin to having a recurring bad dream? Does each…

3 Essential Design Trends, April 2024

Ready to jump into some amazing new design ideas for Spring? Our roundup has everything from UX to color trends…

How to Plan Your First Successful Website

Planning a new website can be exciting and — if you’re anything like me — a little daunting. Whether you’re an…

15 Best New Fonts, March 2024

Welcome to March’s edition of our roundup of the best new fonts for designers. This month’s compilation includes…

LimeWire Developer APIs Herald a New Era of AI Integration

Generative AI is a fascinating technology. Far from the design killer some people feared, it is an empowering and…

20 Best New Websites, March 2024

Welcome to our pick of sites for March. This month’s collection tends towards the simple and clean, which goes to show…

Exciting New Tools for Designers, March 2024

The fast-paced world of design never stops turning, and staying ahead of the curve is essential for creatives. As…

Web Tech Trends to Watch in 2024 and Beyond

It hardly seems possible given the radical transformations we’ve seen over the last few decades, but the web design…