Heimadal Security

MAY 13, 2022

WordPress is a content management system (CMS) that is free to use and open-source. It is built in PHP, and it can be combined with either a MySQL or MariaDB database. Plugin architecture and a template system, which are both referred to as Themes inside WordPress, are both included as features.

Architecture 99

Architecture Cybersecurity 99

Security Affairs

OCTOBER 12, 2023

In September more than 17,000 WordPress websites have been compromised by the Balada Injector malware. Sucuri researchers reported that more than 17,000 WordPress websites have been compromised in September with the Balada Injector. The malicious code was first discovered in December 2022 by AV firm Doctor Web.

Malware 114

Malware Hacking Accountability Cybercrime 114

Security Affairs

MAY 12, 2022

Researchers uncovered a massive hacking campaign that compromised thousands of WordPress websites to redirect visitors to scam sites. Cybersecurity researchers from Sucuri uncovered a massive campaign that compromised thousands of WordPress websites by injecting malicious JavaScript code that redirects visitors to scam content.

Hacking 88

Hacking Scams Phishing Cybersecurity 88

Malwarebytes

MAY 16, 2022

Researchers at Sucuri investigated a number of WordPress websites complaining about unwanted redirects and found websites that use fake CAPTCHA forms to get the visitor to accept web push notifications. These websites are a new wave of a campaign that leverages many compromised WordPress sites. drakefollow[.]com

Adware 105

Adware Scams Internet Internet 105

SiteLock

AUGUST 27, 2021

Websites experience 22 attacks per day on average— that’s over 8,000 attacks per year, according to SiteLock data. A website vulnerability is a weakness or misconfiguration in a website or web application code that allows an attacker to gain some level of control of the site, and possibly the hosting server.

Firewall 98

Firewall eCommerce Malware DNS 98

Malwarebytes

MAY 13, 2021

This blog post was authored by Jérôme Segura. The campaign we are looking at today is about a number of Magento 1 websites that have been compromised by a very active skimmer group. These web shells known as Smilodon or Megalodon are used to dynamically load JavaScript skimming code via server-side requests into online stores.

Malware 111

Malware Hacking Software Cybercrime 111

eSecurity Planet

OCTOBER 29, 2021

Cybercriminals leveraging the SolarMarker.NET-based backdoor are using a technique called SEO poisoning to drive malicious payloads into victims’ systems so they can gain access to the credentials and data within. Malicious SolarMarker downloads. If they click on the SEO-poisoned link, they see a malicious PDF on the page.

Malware 109

Malware Ransomware Antivirus CISO 109