Get a Pentest and security assessment of your IT network.

News

Crooks spreads backdoor devised as a security WordPress Plugin

Experts from Sucuri discovered crooks are spreading a fake WordPress plugin dubbed X-WP-SPAM-SHIELD-PRO containing a backdoor. The fake plugin features legitimate structure and file names, but that all of its contents are fake. The plugin implements a custom sendPost() function that is used to collect information from the WordPress install and send it to the attackers. It also includes a file called plugin-header.php, used by crooks designed to add an additional administrator account mw01main to the WordPress.”]

Source: https://securityaffairs.co/wordpress/63585/malware/wordpress-fake-plugin-backdoor.html

Related posts
News

Ashley Madison 2.0 Hackers Leak 20GB Data Dump, Including CEO's Emails

News

Art of Twitter account hacking

News

Botnet authors use Evernote account as C&C Server

News

Canadian agency breached as hackers exploit CVE-2017-5638 flaw in Apache Struts 2