Major Security Hack Risks - Expect no Support
I will be writing more and publishing more regarding this experience and findings in the next 48 hours as this is being further investigated. For as of right now, in very short, we've detected some serious concerns and security issues on our website since we started with this plugin. All the details will be outlined here at a later time. For as of right now I just want to say that there were a lot of movement by our "now fired " developer through this plugin. What I mainly want to let people know here for right now is the way that this plugin support handled our concern. We reached out with our concerns, we provided them with a lot of details, provided them with copies of all the files relevant. Guess what their response was? Guess what their support team responded to our serious security concerns. We didn't blame them, we reached out for answers and help to be protected... Guess what the supports response was to all of that, "I am sorry we don't want to do business with you" and they went ahead and refunded my stupid $11. Seriously? Is that a response to a customer reaching out with serious security questions and concerns? This response makes it very obvious to us that they must be part of the issue and part of the scam. Never ever throughout my 13 years on WordPress and dealing with all types of plugins, support, and issues, never ever has this been a response we got from a legitimate plugin support. Basically giving us a middle finger, a refund, and "we don't want to do business with you" I think this speaks for itself. I will be publishing the whole support ticket as well as the security concerns and what was done here through this plugin within the next 48 hours. Meanwhile this case has been seriously escalated and is being investigated by wordpress.org, Jetpack, Wordfence, Siteground, and Cloudflare and Godaddy. From my own experience and over a decade on WordPress and all types of challenges and plugins I can tell anyone right now to firstly stay away if you don't want your DNS stolen and spoofed and if you want to still have a secured website. Especially if you want to be able to speak to support rather than getting a refund and a middle finger than this plugin is seriously not your choice. I will update this information with all details further in the coming 48 hours.
Date of experience: February 26, 2024