If you have been using the following plugins you need to upgrade them or remove them as soon as you can.

The following are the affected plugins and their versions:

PublishPress Capabilities <= 2.3
Kiwi Social Plugin <= 2.0.10
Pinterest Automatic <= 4.14.3
WordPress Automatic <= 3.53.2

The following are the affected Epsilon Framework theme versions:

Shapely <=1.2.8
NewsMag <=2.4.1
Activello <=1.4.1
Illdy <=2.1.6
Allegiant <=1.2.5
Newspaper X <=1.3.1
Pixova Lite <=2.0.6
Brilliance <=1.2.9
MedZone Lite <=1.2.5
Regina Lite <=2.0.5
Transcend <=1.1.9
Affluent <1.1.0
Bonkers <=1.0.5
Antreas <=1.0.6
NatureMag Lite – No patch known. Recommended to uninstall from site.

In most cases, the attackers are updating the users_can_register option to enabled and setting the default_role option to `administrator.` This makes it possible for attackers to register on any site as an administrator effectively taking over the site.

As usual our support will help you with information on how to protect your site with information on best practices and what to do.