Evasive malware disguised as a caching plugin allows attackers to create an admin account on a WordPress site, then take over and monetize sites at the expense of legitimate SEO and user privacy.
Source: Dark Reading: Cloud
Backdoor Lurks Behind WordPress Caching Plugin to Hijack Websites
- Critical Laravel Vulnerability CVE-2024-52301 Allows Unauthorized Access
- USX Cyber strengthens phishing defense in GUARDIENT XDR
- O2’s AI Granny Outsmarts Scam Callers with Knitting Tales
- 4M+ WordPress Websites to Attacks, Following Plugin Vulnerability
- High-Severity Flaw in PostgreSQL Allows Hackers to Exploit Environment Variables