all InfoSec News logo
all InfoSec News - Your InfoSec news aggregator
Log in Sign up
all InfoSec News

An Inside Look at The Malware and Techniques Used in the WordPress.org Supply Chain Attack

Add to bookmarks
June 27, 2024, 7:38 p.m. | Marco Wotschka

Wordfence www.wordfence.com

On Monday June 24th, 2024 the Wordfence Threat Intelligence team was made aware of the presence of malware in the Social Warfare repository plugin (see post Supply Chain Attack on WordPress.org Plugins Leads to 5 Maliciously Compromised WordPress Plugins). After adding the malicious code to our Threat Intelligence Database and examining it, we quickly discovered ...
Read More


The post An Inside Look at The Malware and Techniques Used in the WordPress.org Supply Chain Attack appeared first on Wordfence.

attack aware code compromised intelligence june malicious malware monday org plugin plugins presence repository research social supply supply chain supply chain attack team techniques threat threat intelligence vulnerabilities warfare wordfence wordpress wordpress plugins wordpress security

Visit resource

More from www.wordfence.com / Wordfence

WordPress Security Research: A Beginner’s Series 2 hours ago | www.wordfence.com
beginner bounty bug bug bounty +19
WordPress Security Research Series: WordPress Request Architecture and Hooks 2 hours ago | www.wordfence.com
architecture beginner blog blog post +15
3 More Plugins Infected in WordPress.org Supply Chain Attack Due to Compromised Developer Passwords 3 days, 3 hours ago | www.wordfence.com
accounts attack attacker aware +24
An Inside Look at The Malware and Techniques Used in the WordPress.org Supply Chain Attack 3 days, 22 hours ago | www.wordfence.com
attack aware code compromised +25
Wordfence Intelligence Weekly WordPress Vulnerability Report (June 17, 2024 to June 23, 2024) 4 days, 3 hours ago | www.wordfence.com
all in bounty bug bug bounty +22
Developer Accounts Compromised Due to Credential Reuse in WordPress.org Supply Chain Attack 4 days, 20 hours ago | www.wordfence.com
accounts attack aware compromised +29
WordPress 6.5.5 Security Release – What You Need to Know 6 days, 2 hours ago | www.wordfence.com
all in bounty bug bug bounty +18
Supply Chain Attack on WordPress.org Plugins Leads to 5 Maliciously Compromised WordPress Plugins 1 week ago | www.wordfence.com
attack aware code compromised +24
Wordfence Intelligence Weekly WordPress Vulnerability Report (June 10, 2024 to June 16, 2024) 1 week, 4 days ago | www.wordfence.com
all in bounty bug bug bounty +22

Jobs in InfoSec / Cybersecurity

Find Talent

Data Loss Prevention Analyst 1

@ Advanced Energy | Quezon City, 00, PH, n/a
View on infosec-jobs.com

TC-CS-DPP MS Purview-Staff

@ EY | Bengaluru, KA, IN, 560048
View on infosec-jobs.com

Consultant CSIRT Confirmé H/F (Paris)

@ EY | Paris La Défense, FR, 92037
View on infosec-jobs.com

Consultant Azure Cloud Sécurité CSPM H/F (Paris)

@ EY | Paris La Défense, FR, 92037
View on infosec-jobs.com

Consultant en Protection des Données (Microsoft Purview) H/F (Paris)

@ EY | Paris La Défense, FR, 92037
View on infosec-jobs.com

Business Continuity Coordinator

@ Sumitomo Mitsui Banking Corporation | Brea, CA, US, 92821
View on infosec-jobs.com