Posted in Cybersecurity

WordPress backdoor plugins attack: Supply chain breach infects plugins on WordPress.org

   June 25, 2024  Leave a Comment on WordPress backdoor plugins attack: Supply chain breach infects plugins on WordPress.org
Spread the love
  • Threat actor modifies source code of WordPress plugins on WordPress.org in supply chain attack
  • Malicious PHP scripts create new admin accounts with administrative privileges on websites
  • Wordfence discovers breach and notifies plugin developers, resulting in patches being released
  • Infected plugins attempt to create admin accounts and inject SEO spam into compromised websites
  • Data transmitted to IP address 94.156.79[.]8; impacted plugins temporarily delisted from WordPress.org
Summarized Article:

https://www.bleepingcomputer.com/news/security/plugins-on-wordpressorg-backdoored-in-supply-chain-attack/



Related Video
Published on: April 22, 2023 Description: This video will discuss how an abandoned WordPress plugin was used to create a backdoor on vulnerable websites, ...
Abandoned WordPress Plugin Exploited as Backdoor: How to Secure Your Website
Play


Related Wikipedia Articles

Topics: No response

Response
Response may refer to: Call and response (music), musical structure Reaction (disambiguation) Request–response Output or response, the result of telecommunications input Response (liturgy), a line answering a versicle Response (music) or antiphon, a response to a psalm or other part of a religious service Response, a phase in emergency management...
Read more: Response

Author:

Leave a Reply

Your email address will not be published. Required fields are marked *