Wikimedia Foundation Targeted by Self-Propagating JavaScript Worm

Wikimedia Foundation Targeted by Self-Propagating JavaScript Worm

First seen 6 Mar 2026, 23:12 UTC BleepingcomputerScworld 88% similarity 28.5

Article Content

Browse articles
ThreatCluster

The Wikimedia Foundation faced a security incident on March 5, 2026, when a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis, including Wikipedia. The attack originated from a malicious script hosted on Russian Wikipedia, prompting Wikimedia engineers to temporarily restrict editing while they investigated and reverted the changes.

ThreatCluster AI

Timeline

2026-03-05
JavaScript worm attack initiated, vandalizing multiple wikis
2026-03-05
Editors reported the incident on Wikipedia's Village Pump
2026-03-05
Wikimedia engineers restricted editing across projects
2026-03-06
Scworld published coverage of the incident

Community

Browse all →