A glut of WordPress sites have fallen victim to both malware
infections and a series of brute force attacks that have been making the
rounds over the past several days, researchers claim.
According to Peter Gramantik, a malware researcher at Sucuri, highly obfuscated malware payloads have been targeting sites with out of date plugins and sloppy, weak passwords.
While the fact that malware is targeting outdated plugins and weak passwords isn’t particularly surprising, Gramantik claims what makes the attack interesting is the fact that the payload is being blindly injected. Bug-riddled PHP is apparently corrupting legitimate WordPress files, along with theme and plugin files that belong to the popular content management system.
Read the whole story here: http://threatpost.com/wordpress-sites-seeing-increased-malware-brute-force-attacks-this-week
Concept Digital Media specializes in building sites on the Joomla platform.
According to Peter Gramantik, a malware researcher at Sucuri, highly obfuscated malware payloads have been targeting sites with out of date plugins and sloppy, weak passwords.
While the fact that malware is targeting outdated plugins and weak passwords isn’t particularly surprising, Gramantik claims what makes the attack interesting is the fact that the payload is being blindly injected. Bug-riddled PHP is apparently corrupting legitimate WordPress files, along with theme and plugin files that belong to the popular content management system.
Read the whole story here: http://threatpost.com/wordpress-sites-seeing-increased-malware-brute-force-attacks-this-week
Concept Digital Media specializes in building sites on the Joomla platform.
No comments:
Post a Comment