New WordPress backdoor creates rogue admin to hijack websites

Oct. 11, 2023, 9:23 p.m. | Bill Toulas

BleepingComputer www.bleepingcomputer.com

A new malware has been posing as a legitimate caching plugin to target WordPress sites, allowing threat actors to create an administrator account and control the site's activity. [...]

account admin backdoor control hijack malware plugin rogue rogue admin security target threat threat actors websites wordpress

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

HPE Aruba Networking fixes four critical RCE flaws in ArubaOS 11 hours ago | www.bleepingcomputer.com

advisory april aruba arubaos +17

DropBox says hackers stole customer data, auth secrets from eSignature service 11 hours ago | www.bleepingcomputer.com

access auth authentication breached +21

US govt warns of pro-Russian hacktivists targeting water facilities 14 hours ago | www.bleepingcomputer.com

critical critical infrastructure disrupt government +16

Panda Restaurants discloses data breach after corporate systems hack 16 hours ago | www.bleepingcomputer.com

attackers breach compromised corporate +14

French hospital CHC-SV refuses to pay LockBit extortion demand 17 hours ago | www.bleepingcomputer.com

demand extortion france french +12

CISA says GitLab account takeover bug is actively exploited in attacks 17 hours ago | www.bleepingcomputer.com

account accounts account takeover actively exploited +14

Microsoft: April Windows Server updates cause NTLM auth failures 18 hours ago | www.bleepingcomputer.com

april auth authentication customer +13

Microsoft says April Windows updates break VPN connections 19 hours ago | www.bleepingcomputer.com

april connections microsoft security +11

Qantas app exposed sensitive traveler details to random users 20 hours ago | www.bleepingcomputer.com

airways app customers exposed +7

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

Application Security Engineer - Remote Friendly

@ Unit21 | San Francisco,CA; New York City; Remote USA;

View on infosec-jobs.com

Cloud Security Specialist

@ AppsFlyer | Herzliya

View on infosec-jobs.com

Malware Analysis Engineer - Canberra, Australia

@ Apple | Canberra, Australian Capital Territory, Australia

View on infosec-jobs.com

Product CISO

@ Fortinet | Sunnyvale, CA, United States

View on infosec-jobs.com

Manager, Security Engineering

@ Thrive | United States - Remote

View on infosec-jobs.com

View more jobs

all InfoSec news

New WordPress backdoor creates rogue admin to hijack websites

More from www.bleepingcomputer.com / BleepingComputer

Jobs in InfoSec / Cybersecurity

Social Engineer For Reverse Engineering Exploit Study

Application Security Engineer - Remote Friendly

Cloud Security Specialist

Malware Analysis Engineer - Canberra, Australia

Product CISO

Manager, Security Engineering