The last few weeks, WordPress has been under many attacks. These have shown great planning as they attack not only plugins, but are capable of injecting vulnerable code that makes visited sites lead to others, which will trick visitors. In April, there was a wave of attacks exploiting weaknesses in the plugins WordPress sites rely on, but May is proving that this wave will only continue. Read all the details in this article.
Read: A Nerbian RAT is targeting entities in Italy, Spain and The U.K.
WordPress sites have been compromised
In other cases, the page users are redirected to shows a captcha that only ends up loading advertising that seems to come from the system itself, instead of being displayed by the browser. Of course, clicking on the advertising can have a number of consequences.
This series of attacks on WordPress sites is suspected to have started on May 9 and has hit 366 sites so far. During the month of April, the contaminated sites reached more than 6 thousand. In closing, Konov said: “It has been found that attackers are targeting multiple vulnerabilities in WordPress plugins and themes to compromise the website and inject their malicious scripts.”
Keep in touch with our blog to read the latest news and innovations in the cybersecurity world.
Photo by Justin Morgan on Unsplash.
Facebook: Eagle Tech Corp
LinkedIn: Eagle Tech
YouTube: Eagle Tech Corp