How Dxw Protected Clients From a Recent WordPress Supply-Chain Attack
In early April 2026 a malicious backdoor was discovered in 26 WordPress plugins originally created by essentialplugins after the suite was sold to a new owner. WordPress removed the compromised plugins from its repository, and dxw quickly identified the threat, isolated the affected sites, and notified clients. Because dxw treats site code as immutable and blocks arbitrary file writes, the backdoor could not execute, preventing client sites from being compromised. The incident underscores the risks of plugin supply‑chain attacks and the value of proactive, security‑first hosting.
Improving GOV.UK Publishing
dxw is partnering with the UK Government Digital Service to overhaul the GOV.UK Publishing Service. The effort shifts the platform from a pre‑packaged content store to on‑the‑fly generation via a revamped Publishing API, reducing data sync errors. GraphQL support adds...
NHS England Image Reading Design Sprint: Two Weeks Inside Breast Screening Reporting
dxw conducted a two‑week design sprint with NHS England to overhaul reporting for breast‑screening image readers. The team mapped the end‑to‑end workflow, built a unified data model, and defined key performance indicators for readers, unit directors, and the Screening Quality...
Practical AI Use Cases in Public Services: What’s Safe and What Works?
In February 2026 dxw and Basis hosted a workshop for public‑sector leaders on practical AI use cases, emphasizing outcomes over mere cost‑cutting. Participants shared successful pilots, identified friction points, and explored how AI can enhance relational services such as health...