THE Uncanny Automator breach, confirmed by its maker Uncanny Owl on June 12, 2026, exposed customer data and injected a malicious update into WordPress sites via a flawed update channel. Attackers manipulated the Pro update package and accessed the licensing database, compromising details like names, email addresses, license keys, and website URLs—though no payment data was stolen.
The compromised version, 7.3.0.5, was limited to approximately 6% of sites before the company quickly released a secure update, 7.3.0.6, and reset all affected passwords. An ongoing risk exists due to potential phishing attacks and the persistence of the malicious build. Users are urged to verify their plugin version and follow security protocols.