Sathurbot: Distributed WordPress password attack

This article sheds light on the current ecosystem of the Sathurbot backdoor trojan, in particular exposing its use of torrents as a delivery medium and its distributed brute-forcing of weak WordPress administrator accounts. The torrent leecher Looking to download a movie or software without paying for it? There might be associated risks. It just might … More Sathurbot: Distributed WordPress password attack

100,000+ WordPress webpages defaced, Irish pages included

Thousands of WordPress webpages hacked, ESET Ireland finds several Irish pages, including GAA Daily among them. Two weeks ago WordPress 4.7.2 was released, and website administrators running self-hosted versions of the hugely popular CMS and blogging platform were advised to update their systems as a matter of urgency. What we didn’t know at the time … More 100,000+ WordPress webpages defaced, Irish pages included

Millions of WordPress sites left vulnerable by plugin flaw

Millions of WordPress sites have been left vulnerable by a scripting flaw found in two popular plugins, one of which is present in the default installation of the blogging platform, reports Computer World. The two plugins are JetPack and Twenty Fifteen, the first of which is a customization and performance tool, and the latter is … More Millions of WordPress sites left vulnerable by plugin flaw