WordPress plugin installed on 1 million+ sites logged plaintext passwords

AIOS bills itself as an "all-in-one" security solution. A just-fixed bug undermined that.

https://arstechnica.com/security/2023/07/wordpress-plugin-installed-on-1-million-sites-logged-plaintext-passwords/?utm_brand=arstechnica&utm_social-type=owned&utm_source=mastodon&utm_medium=social