40,000 WordPress Sites Infected
Posted by: Timothy Weaver on 04/06/2017 03:22 PM
[
Comments
]
WordPress sites are being infected with malware that is disguised as a search engine optimization plugin.
A research team at SiteLoc has discovered the fake plugin, called WP-Base-SEO, which is based on a legit SEO module and is easily overlooked by webmasters in an attempt to boost traffic. The plugin creates a backdoor into the site.
SiteLoc believes the cyberattackers are scanning WordPress sites for an outdated plugin called RevSlider. Malicious files are found in /wp-content/plugins/wp-base-seo/wp-seo-main.php.
SiteLoc estimates that the total number of infected sites has reached 40,000. Previous cases where RevSlider was compromised found the sites infected with ransomware using the Neutrino exploit kit.
WordPress is a frequent target for hackers.
Source: SCMagazine
A research team at SiteLoc has discovered the fake plugin, called WP-Base-SEO, which is based on a legit SEO module and is easily overlooked by webmasters in an attempt to boost traffic. The plugin creates a backdoor into the site. SiteLoc believes the cyberattackers are scanning WordPress sites for an outdated plugin called RevSlider. Malicious files are found in /wp-content/plugins/wp-base-seo/wp-seo-main.php.
SiteLoc estimates that the total number of infected sites has reached 40,000. Previous cases where RevSlider was compromised found the sites infected with ransomware using the Neutrino exploit kit.
WordPress is a frequent target for hackers.
Source: SCMagazine
Comments
