New Malware Campaign Found Exploiting Stored XSS in Popup Builder < 4.2.3 | allinfosecnews.com

March 7, 2024, 5:31 p.m. | Puja Srivastava

Sucuri Blog blog.sucuri.net

In January, my colleague reported about a new Balada Injector campaign found exploiting a recent vulnerability in the widely-used Popup Builder WordPress plugin which was initially disclosed back in November, 2023 by Marc Montpas.

In the past three weeks, we’ve started seeing an uptick in attacks from a new malware campaign targeting this same Popup Builder vulnerability. According to PublicWWW, over 3,300 websites have already been infected by this new campaign. Our own SiteCheck remote malware scanner has detected this …

attacks back balada balada injector black hat tactics builder campaign exploiting found hacked websites injector january malware malware campaign november plugin popup security advisory stored xss vulnerability vulnerability disclosure website malware infections wordpress wordpress plugin wordpress plugins and themes wordpress security xss

More from blog.sucuri.net / Sucuri Blog

Hundreds of Websites Targeted by Fake Google Chrome Update Pop-Ups 4 days, 10 hours ago | blog.sucuri.net

browser campaigns chrome chrome update +30

From Privacy to Exfiltration: Telegram’s Role in Website Malware 1 week, 3 days ago | blog.sucuri.net

abuse black hat tactics creators cybercriminals +21

WordPress Vulnerability & Patch Roundup May 2024 1 week, 5 days ago | blog.sucuri.net

attacks automated awareness disclosures +32

How to Fix the NET::ERR_CERT_DATE_INVALID Error 2 weeks, 2 days ago | blog.sucuri.net

address can certificate connection +14

Server Side Credit Card Skimmer Lodged in Obscure Plugin 2 weeks, 4 days ago | blog.sucuri.net

attackers card credit credit card +22

What is HTTP 504 Gateway Timeout & How to Fix It 3 weeks, 5 days ago | blog.sucuri.net

best practices can error errors +14

What is HTTP Error 502 Bad Gateway & How to Troubleshoot It 1 month ago | blog.sucuri.net

bad best practices can error +21

What is HTTP Error 429: Too Many Requests 1 month ago | blog.sucuri.net

access can code error +15

Mal.Metrica Redirects Users to Scam Sites 1 month, 1 week ago | blog.sucuri.net

analysts black hat tactics click compromised +11

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel

View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States

View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States

View on infosec-jobs.com