all InfoSec news
Linux Malware Uses 30 Plugin Exploits to Backdoor WordPress Sites
Jan. 16, 2023, 9:01 p.m. | Bill Toulas
The RISKS Digest catless.ncl.ac.uk
Bill Toulas, BleepingComputer, 30 Dec 2022,
via ACM TechNews; Wednesday, January 4, 2023
Antivirus vendor Dr. Web disclosed a new Linux malware that exploits 30
flaws in multiple outdated WordPress plugins and themes to inject malicious
JavaScript and give attackers remote command capabilities. The vendor said
the trojan targets 32-bit and 64-bit Linux systems; it is mainly designed to
penetrate WordPress websites via a series of hardcoded exploits that run
successively until one breaks through. If the sites run outdated …
64-bit antivirus attackers backdoor bill bleepingcomputer capabilities command dec exploits flaws hardcoded inject january javascript linux linux malware malicious malware plugin plugins run series systems technews trojan vendor web websites wordpress wordpress plugins wordpress plugins and themes
More from catless.ncl.ac.uk / The RISKS Digest
EFI IPv6/PXE Security Flaw
4 months, 1 week ago |
catless.ncl.ac.uk
Imaging privacy threats from an ambient light sensor
4 months, 1 week ago |
catless.ncl.ac.uk
Re: CLEAR wants to scan your face at airports. Privacy experts are worried.
4 months, 1 week ago |
catless.ncl.ac.uk
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Security Compliance Strategist
@ Grab | Petaling Jaya, Malaysia
Cloud Security Architect, Lead
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)