Scworld
Wikimedia Foundation Targeted by Self-Propagating JavaScript Worm
First seen 6 Mar 2026, 23:12 UTC
•
•88% similarity
•28.5
Share:
Export
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Browse articles
The Wikimedia Foundation faced a security incident on March 5, 2026, when a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis, including Wikipedia. The attack originated from a malicious script hosted on Russian Wikipedia, prompting Wikimedia engineers to temporarily restrict editing while they investigated and reverted the changes.
ThreatCluster AI
Timeline
2026-03-05
JavaScript worm attack initiated, vandalizing multiple wikis
2026-03-05
Editors reported the incident on Wikipedia's Village Pump
2026-03-05
Wikimedia engineers restricted editing across projects
2026-03-06
Scworld published coverage of the incident