Supply chain attacks against WordPress plugins are difficult to spot because they often hide behind legitimate update processes that users trust every day.

In this episode, Austin Ginder, Founder of Anchor Host and WPBeacon, shares how investigating compromised sites across a large managed WordPress environment led him to uncover multiple examples of plugin supply chain abuse. He explains the techniques involved, how AI accelerated the investigation process, and what the WordPress ecosystem can do to improve software integrity.

Key topics discussed:

• How plugin supply chain attacks operate through trusted update channels

• The attack patterns Austin investigated, including expired domain takeovers, redirected update infrastructure, and version number manipulation

• How Claude Code accelerated timeline reconstruction ...