light bulb

Did You Know?



Reply
Posts: 5,232
Topics: 3,363
Kudos: 6,514
Registered: ‎06-12-2013

Mass exploit of WordPress plugin backdoors sites running Joomla, Magento, too

MailPoet attacks commandeer an estimated 30,000 to 50,000 sites, researcher says.

by Dan Goodin - July 23 2014

 

As many as 50,000 websites have been remotely commandeered by attackers exploiting a recently patched vulnerability in a popular plugin for the WordPress content management system, security researchers said Wednesday.

 

As Ars reported in early July, the vulnerability in MailPoet, a WordPress plugin with more than 1.7 million downloads, allows attackers to upload any file of their choice to vulnerable servers. In the three weeks since then, attackers have exploited the bug to install a backdoor on an estimated 30,000 to 50,000 websites, some that don't even run WordPress software or that don't have MailPoet enabled, according to Daniel Cid, CTO of security firm Sucuri.

 

Full Article

Sr. Community Leader

Posts: 902
Registered: ‎06-20-2014

Re: Mass exploit of WordPress plugin backdoors sites running Joomla, Magento, too

It never ends! Sounds like a huge mess.

 

sig



Experience Shared is Knowledge Shared, Share Yours! I'm a volunteer – my reward is your SMILE!:smileyvery-happy:


Helpful Webroot Links:


                         Submit Trouble Ticket • User Guides • BrightCloud URL lookup • Account Console 

Download (PC) • Download (Best Buy/Geek Squad Subscription) • Download (Walmart and Target) • Download (MSN Subscription) 


                                         Register and Introduce yourself to The Community!