Security researchers have discovered that thousands of WordPress website have been hacked and injected with malicious codes
Security researchers have discovered that thousands of WordPress websites have been hacked and injected with malicious codes.Researchers from Sucuri and Malwarebytespotted the campaign in early September where users visiting the compromised websites were redirected to tech-support scam pages.“During the past few days, our crawlers have been catching a larger-than-usual number of WordPress sites being hijacked. One of the most visible client-side payloads we see are redirections to tech support scam pages. Digging deeper, we found that this is part of a series of attacks that have compromised thousands of WordPress sites since early September.”The attackers gain access by exploiting outdated plugins in WordPress CMS, and after gaining access, they also plant a backdoor for future access.According to researchers, attacker loads malicious codes to the websites in different ways. In client side one large encoded blurb, usually in the HTML headers tag or a one-liner pointing to an external JavaScript.In some websites, the malicious codes were present within the wp_posts table of their WordPress database.“Website owners affected by these attacks will have to perform a thorough cleanup of injected pages, databases, and backdoors. More importantly, they will need to identify the root cause of the compromise, which often times is an outdated WordPress installation or plugin.” said in the post published by Malwarebytes. For more details, you can visit analysis published by Malwarebytes Researcher here. For the latest cyber threats and the latest hacking news please follow us on Facebook and Twitter.
You may be interested in reading:Hackers Compromised Japanese Zaif Exchange and Stole Cryptocurrencies worth $60 Million