WordPress hacked by SA3D and how to prevent it

In the recent months, you may have seen the message on the left around the web. What happened? Newer versions of WordPress include REST API, which offers many powerful new features and integrations.

Unfortunately, a serious security threats were identified and many WordPress administrators were slow to respond to the security alerts. Google still shows 236 000+ results worldwide and 900+ hacked results with a .fi domain — the worlds most secure domain including many tech companies. A quick update to WordPress core would have prevented this attack.