Providing Free and Editor Tested Software Downloads

Major Geeks.com- Feel the Geek.. BE the Geek!

All In One Tweaks

Antivirus & Malware

Drives (SSD, HDD, USB)

Graphics & Photos

MajorGeeks Windows Tweaks

Office & Productivity

· How To and Tutorials
· Life Hacks and Reviews
· Way Off Base
· MajorGeeks Deals
· News
· Off Base
· Reviews

IObit Black Friday Sale

· YouTube
· Facebook
· Instagram
· Twitter
· Pintrest
· RSS/XML Feeds

· News Blur
· Yahoo
· Symbaloo

· Top Freeware Picks
· Malware Removal
· Geektionary
· Useful Links
· About Us

· Copyright
· Privacy
· Terms of Service
· How to Uninstall

1. GS Auto Clicker

2. Macrium Reflect FREE Edition

3. Smart Defrag

5. Sergei Strelec's WinPE

6. Microsoft Visual C++ 2015-2022 Redistributable Package

7. Visual C++ Redistributable Runtimes AIO Repack

8. McAfee Removal Tool (MCPR)

9. K-Lite Mega Codec Pack

10. Visual C++ Runtime Installer (All-In-One)

AI Answers: Authority Without Accountability

All the New Features Landing in Windows 11 This December

Lossless vs Lossy: When FLAC, APE, and ALAC Beat MP3 and When They Don't

Google Search Tricks You'll Actually Use in 2025 and Beyond

Fresh PC Checklist: First 12 Things to Do On a New Windows 11 Machine

Running AI Models Locally: What They Are, Where to Find Them, and How to Get Started

Deciding Between Idle State, Sleep Mode, and Shutdown: What's Best for Your PC?

How to Fix VMware Workstation "The Update Server Could Not Be Resolved" Error Installing VMware Tools

How to Remove Google Gemini from Your Phone (and Your Life)

Windows Bloat Removal Guide: Debloat Safely and Keep What You Need

WordPress Sites Delivering Ransomware

Posted by: Timothy Weaver on 02/05/2016 10:34 AM [ Comments ]

A large number of websites that run on the WordPress content management system are being hacked to deliver the Teslacrypt ransomware package, which encrypts user files and demands a hefty ransom for the decryption key needed to restore them.

Malwarebytes Senior Security Researcher Jérôme Segura wrote: "WordPress sites are injected with huge blurbs of rogue code that perform a silent redirection to domains appearing to be hosting ads. This is a distraction (and fraud) as the ad is stuffed with more code that sends visitors to the Nuclear Exploit Kit."

According to website security firm Sucuri, the code takes pains to infect only first-time visitors. To further conceal the attack, the code redirects end users through a series of sites before delivering the final, malicious payload.

It is not known how the sites are becoming infected, but it is possible that site administrators are not locking down login credentials that allow the hacker to change content. However, the website malware installs a variety of backdoors on the webserver, a feature that's causing many hacked sites to be repeatedly reinfected.

People running WordPress sites should take time to make sure their servers are fully patched and locked down with a strong password and two-factor authentication.

Source: Arstechnica

Comments

comments powered by Disqus

© 2000-2025 MajorGeeks.com

Powered by Contentteller® Business Edition