Newsbytes
  • India
  • Business
  • World
  • Politics
  • Sports
  • Science
  • Entertainment
  • Auto
  • Lifestyle
  • Inspirational
  • Career
  • Bengaluru
  • Delhi
  • Mumbai
  • Videos
  • Find Cricket Statistics
Hindi
More
Newsbytes
Hindi
Newsbytes
User Placeholder

Hi,

Logout


India
Business
World
Politics
Sports
Science
Entertainment
Auto
Lifestyle
Inspirational
Career
Bengaluru
Delhi
Mumbai
Videos
Find Cricket Statistics

More Links
  • Elections 2019
  • Videos

Download Android App

Follow us on
  • Facebook
  • Twitter
  • Linkedin
  • Youtube
 
Home / News / Science News / Watch out! Hackers are exploiting WordPress sites to spread malware
  • Science

    Watch out! Hackers are exploiting WordPress sites to spread malware

    Shubham Sharma
    Written by
    Shubham Sharma
    Twitter
    Last updated on Mar 30, 2019, 12:10 am
    Watch out! Hackers are exploiting WordPress sites to spread malware
  • Next time, when you click on a link served via email, better look at the website it is redirecting you to - as it may install a ransomware/malware on your PC.

    Hackers, according to a recent ZDNet report, are hijacking websites to hide and distribute malware and ransomware to unsuspecting users.

    They have already compromised some 500 sites.

    Here's everything about the attack.

  • In this article
    Popular CMS systems being exploited to distribute malware Malicious content even stays hidden from administrators 500 websites affected with different malicious programs Deepen Desai, Zscaler's VP for security, detailed the attack vector Attackers still remain at large
  • Attack

    Popular CMS systems being exploited to distribute malware

    Popular CMS systems being exploited to distribute malware
  • Researchers from IT security company Zscaler have reported that hackers have been exploiting vulnerabilities in websites built on popular content management systems.

    They have been leveraging issues with the themes, extensions, and plugins used in Joomla and WordPress, two of the most used CMS systems, to hide and distribute malware, and sometimes even phishing pages, through a hidden HTTP directory.

  • Hidden content

    Malicious content even stays hidden from administrators

    Malicious content even stays hidden from administrators
  • While assessing the infected websites, the researchers noted that hackers had used different techniques to gain access to the hidden directory, which is commonly used for verifying the ownership of a domain.

    As this page stays hidden from the administrators of the website, the malicious content stays on the website for long, thereby affecting more number of users, they said.

  • Impact

    500 websites affected with different malicious programs

    500 websites affected with different malicious programs
  • So far, the researchers have discovered over 500 websites that have been compromised using the CMS vulnerabilities and the hidden directory.

    They have discovered a range of malicious programs being distributed through the websites, including the critical Shade, aka Troldesh, ransomware.

    Notably, it affected the most number of infected WordPress and Joomla websites.

  • Quote

    Deepen Desai, Zscaler's VP for security, detailed the attack vector

  • "Spam emails usually contains link to the HTML redirector page hosted on the compromised site which downloads the malicious zip file. User needs to open the JavaScript file inside the ZIP and this JavaScript file will download the ransomware from compromised site and execute it."

  • Attacker

    Attackers still remain at large

    Attackers still remain at large
  • Zscaler indicated that the outdated themes or server-side software might be the reason for the attack on WordPress sites (built using version 4.8.9 to 5.1.1).

    The security company is in the process of informing the infected websites' owners about the issue.

    However, so far, there is no word on the exact loophole or on the bad actors behind these attacks.

View all questions (5)
Latest News
  • 3.8 lakh inoculated, two deaths not associated with vaccine: Government
    3.8 lakh inoculated, two deaths not associated with vaccine: Government
    India
  • Coronavirus: India's tally reaches 10.58 million with 10K new cases
    Coronavirus: India's tally reaches 10.58 million with 10K new cases
    India
  • #ComicBytes: Plan to watch WandaVision? Read these comics before
    #ComicBytes: Plan to watch WandaVision? Read these comics before
    Entertainment
  • Samsung Galaxy A52 5G appears on TENAA certification site
    Samsung Galaxy A52 5G appears on TENAA certification site
    Science
Related Timelines
  • #WeeklyRecap: Apple bans Epic, Zoom's outage, TikTok's crisis, and more
    #WeeklyRecap: Apple bans Epic, Zoom's outage, TikTok's crisis, and more
    Science
  • Hackers are infecting PCs, stealing passwords with coronavirus maps
    Hackers are infecting PCs, stealing passwords with coronavirus maps
    Science
  • Hackers can wipe your WordPress site with this plugin flaw
    Hackers can wipe your WordPress site with this plugin flaw
    Science
Next News Article
Share
Cancel

Want to share it with your friends too?

Facebook Whatsapp Twitter Linkedin
Copied

Love Science news?

Subscribe to stay updated.

Science Thumbnail
India News Business News World News Politics News Sports News Science News Entertainment News Auto News Lifestyle News Inspirational News
Career News Bengaluru News Delhi News Mumbai News Cricket News Donald Trump Hollywood News WhatsApp Bollywood News Honda
Football News Vaccine Congress Manchester United Premier League Liverpool Latest Gadget Launch Latest Automobile News Coronavirus Brisbane Test
MediaTek Dimensity 1000+ COVAXIN Latest Tech News Liger
About Us Privacy Policy Terms & Conditions Contact Us News News Archive Topics Archive Find Cricket Statistics
Follow us on
Facebook Twitter Linkedin Youtube
All rights reserved © NewsBytes 2021