all InfoSec news
Hackers Compromised 3,300 Websites Using Plug-in Vulnerability
Cyber Security News cybersecuritynews.com
Attackers exploit an unpatched Popup Builder vulnerability (CVE-2023-6000) to inject malicious code into vulnerable websites’ “Custom JS or CSS” sections. The code redirects users to phishing sites or injects further malware, and the campaign has already infected over 3300 websites. Malicious code targets popup events (opening and closing) to manipulate popup behavior. Sometimes, attackers redirect […]
The post Hackers Compromised 3,300 Websites Using Plug-in Vulnerability appeared first on Cyber Security News.
attackers builder campaign code compromised css cve cyber security events exploit hackers inject malicious malware phishing popup redirects technology unpatched vulnerability vulnerable websites