Tag: admin

Attackers exploit flaw in GDPR-themed WordPress plugin to hijack websites

November 14, 2018

The campaign’s goals aren’t immediately clear, as the malefactors don’t appear to be leveraging the hijacked websites for further nefarious purposes. Attackers have been exploiting a security weakness in a GDPR compliance plugin for WordPress to seize control of vulnerable websites, according to a blog post by Defiant, which makes Wordfence security plugins for the web … More Attackers exploit flaw in GDPR-themed WordPress plugin to hijack websites

Ammyy Admin compromised with malware again; World Cup used as cover

July 12, 2018

Website altered to serve a malware-tainted version of otherwise legitimate software with the global event in Russia acting as a smokescreen. Users who downloaded the free remote administration tool Ammyy Admin from its official website ammyy.com on June 13 or 14, beware! According to ESET’s analysis, within that timeframe the website was compromised to serve … More Ammyy Admin compromised with malware again; World Cup used as cover

Sathurbot: Distributed WordPress password attack

April 6, 2017

This article sheds light on the current ecosystem of the Sathurbot backdoor trojan, in particular exposing its use of torrents as a delivery medium and its distributed brute-forcing of weak WordPress administrator accounts. The torrent leecher Looking to download a movie or software without paying for it? There might be associated risks. It just might … More Sathurbot: Distributed WordPress password attack