If you run a WooCommerce store, this is worth your attention. WooCommerce has issued a developer advisory about a new phishing campaign that’s targeting store owners with fake security alerts.
Here’s a quick breakdown of what’s happening and how you can stay safe.
What’s Going On?
Attackers are sending fake emails pretending to be from WooCommerce. They claim your site has a “critical security vulnerability” discovered around April 14, 2025, and they urge you to install a “security patch,” which, of course, is actually malware.
These emails are designed to look convincing, often mentioning your specific store URL to add pressure. But they’re coming from shady domains like:
help@security-woocommerce.comincident@notify-woocommerce.comhelp@support-woocommerce.com
These are not official WooCommerce communications.
Additional comments on the official post from WooCommerce shared the following:
In short, many users reported more malicious domains than the initial reported ones:
woocommėrce.com (with an accent mark on the ‘e’)noreply@news-woocommerce.comnoreply@woocommerce-secure.comsecurity@mail-woocommerce.comsecurity@news-woocommerce.comnoreply@woocommerce-monitor.comnoreply@woocommerce-updates.com
Real security updates from WooCommerce always come from trusted domains like woocommerce.com or automattic.com, and they’ll direct you to legitimate sources like WordPress.org or WooCommerce.com, never to random downloads.
What You Should Do
If you spot one of these emails:
- Don’t click any links or download any files.
- Don’t install any plugins or patches sent through email.
- Report the email as phishing to your provider.
When in doubt, go directly to your WordPress dashboard or WooCommerce.com for updates and never trust links inside an email you weren’t expecting.
Read the Dev advisory from WooCommerce here.
How Rapyd Cloud Helps Keep You Safe
While we can’t control external phishing campaigns, Rapyd Cloud can help you build a more secure foundation through:
- Automatic WordPress updates so your core software and plugins stay current.
- Server-side malware scanning to spot suspicious files early.
- Daily backups that make it easy to recover if something ever goes wrong.
- Real human support that can help if you’re worried about your site’s security.
Your WooCommerce store deserves better than crossing your fingers and hoping hackers stay away.
Stay sharp, and if you ever need help locking down your store, the Rapyd Cloud team has your back.
