all InfoSec news
Remote Code Execution Backdoor Uses Unicode Obfuscation & Non-Standard File Extensions
Sucuri Blog blog.sucuri.net
Readers of this blog will know that attackers are constantly finding new ways to hide their malware and avoid detection; after all, that’s what good malware does best! We have recently observed attackers leveraging both excessive amounts of unicode as well as peculiar includes and file extensions within their WordPress backdoors to conceal their malware and make it more difficult to find and detect.
In this post we’ll review what this malware does, what it looks like, and how to …
attackers backdoor blog code code execution detection extensions file good hacked websites hide malware non obfuscation remote code remote code execution standard unicode website backdoor website malware infections website security wordpress security