wordpress – Page 2 – Computer Security Articles

MalwareBytes Security

Malware targets 30 unpatched WordPress plugins

January 6, 2023 admin backdoor, exploit, Linux Malware, news, plugin, theme, update, Vulnerability, wordpress

Categories: News

Tags: WordPress

Tags: exploit

Tags: vulnerability

Tags: plugin

Tags: theme

Tags: update

Tags: linux malware

Tags: backdoor

It’s time to check your website is up to date.

(Read more…)

The post Malware targets 30 unpatched WordPress plugins appeared first on Malwarebytes Labs.

MalwareBytes Security

WPGateway WordPress plugin vulnerability could allow full site takeover

September 14, 2022 admin CVE, news, plugin, Vulnerability, wordpress, wpgateway

Categories: News

Tags: WPGateway

Tags: WordPress

Tags: plugin

Tags: vulnerability

Tags: CVE

We take a look at a vulnerability being exploited in the wild related to the WPGateway WordPress plugin.

(Read more…)

The post WPGateway WordPress plugin vulnerability could allow full site takeover appeared first on Malwarebytes Labs.

MalwareBytes Security

BackupBuddy WordPress plugin vulnerable to exploitation, update now!

September 13, 2022 admin backupbuddy, compromise, exploit, hack, news, update, Vulnerability, wordpress

Categories: News

Tags: BackupBuddy

Tags: WordPress

Tags: vulnerability

Tags: exploit

Tags: hack

Tags: compromise

Tags: update

We take a look at a vulnerability in popular WordPress plugin BackupBuddy, and the steps you need to take to fix it.

(Read more…)

The post BackupBuddy WordPress plugin vulnerable to exploitation, update now! appeared first on Malwarebytes Labs.

MalwareBytes Security

A week in security (July 18 – July 24)

July 25, 2022 admin a week in security, Compliance, cryptocurrency, extortionists, Facebook, google, GPS, Paypal, ring, roblox, wordpress

Credit to Author: Malwarebytes Labs| Date: Mon, 25 Jul 2022 08:44:00 +0000

The most important and interesting computer security stories from the last week.

The post A week in security (July 18 – July 24) appeared first on Malwarebytes Labs.

MalwareBytes Security

Warning for WordPress admins: uninstall the Modern WPBakery plugin immediately!

July 19, 2022 admin compromise, CVE, exploit, hijack, JavaScript, Malwarebytes news, modern wpbakery, plugin, wordpress

Credit to Author: Christopher Boyd| Date: Tue, 19 Jul 2022 12:07:10 +0000

We take a look at a WordPress plugin, abandoned and open to JavaScript related exploitation. Uninstall it now!

The post Warning for WordPress admins: uninstall the Modern WPBakery plugin immediately! appeared first on Malwarebytes Labs.

MalwareBytes Security

Sysrv botnet is out to mine Monero on your Windows and Linux servers

May 18, 2022 admin Botnet, botnets, crypto miner, cve-2022-22947, ddos, Exploits and vulnerabilities, Golang, linux, monero, multi-platform malware, patch management, spring, sysrv, vulnerabilities, wordpress

Credit to Author: Pieter Arntz| Date: Wed, 18 May 2022 12:55:00 +0000

The Sysrv botnet has been developing over the last years, and has become a multi-platform botnet that specializes in Monero cryptomining.

The post Sysrv botnet is out to mine Monero on your Windows and Linux servers appeared first on Malwarebytes Labs.

MalwareBytes Security

Fake reCAPTCHA forms dupe users via compromised WordPress sites

May 16, 2022 admin CAPTCHA, JavaScript, local.drakefollow.com, push notifications, recaptcha, web threats, wordpress

Credit to Author: Pieter Arntz| Date: Mon, 16 May 2022 11:54:12 +0000

Threat actors have launched a new campaign that starts with compromised WordPress sites and leads to fake reCAPTCHA sites designed to get visitors to accept web push notifications.

The post Fake reCAPTCHA forms dupe users via compromised WordPress sites appeared first on Malwarebytes Labs.

MalwareBytes Security

Ukraine government and pro-Ukrainian sites hit by DDoS attacks

April 29, 2022 admin brownflood, cert-ua, compromised wordpress sites, ddos, DDos attack, distributed denial-of-service attack, GitHub, Security world, wordpress

Credit to Author: Malwarebytes Labs| Date: Fri, 29 Apr 2022 08:01:46 +0000

We can’t tell which party made the first move, but both the pro-Ukraine and Russian sides have been exchanging DDoS attacks.

The post Ukraine government and pro-Ukrainian sites hit by DDoS attacks appeared first on Malwarebytes Labs.