• Skip to main content
  • Skip to header right navigation
  • Skip to site footer
iGuRu

iGuRu

Real-time Technology News. Opinions & Tweaks

  • / news
  • / infosec
  • / tools
  • / tweaks
  • / dummies
  • / opinions
  • / support
  • / yourpost
home / News / Update WordPress File Manager immediately

Update WordPress File Manager immediately

07/09/2020 10:38 by giorgos

Millions of WordPress sites were attacked this week, said Defiant, the company behind the Wordfence firewall.

The sudden rise in attacks occurred when hackers discovered and began exploiting a 0day vulnerability in “File Manager, A WordPress plugin used on more than 700.000 websites.0day - WordPress File Manager update immediately

0day allowed an attacker to upload malicious files to a site running an older version of File Manager.

It is not known how they discovered 0day, but all last week the hackers started looking for sites that had this add-on installed.

If the scan was successful, the attackers took advantage of the 0day and uploaded a web shell disguised as an image file to the victim's server. So they could access the site by adding it to a botnet.

The attacks started late, but intensified throughout the past week. Defiant detected attacks on 1 million WordPress sites as of Friday, September 4th.

In all, Defiant has blocked attacks on more than 1,7 million websites since September 1, when the attacks were first discovered.

The good news is that the File Manager developer team created and released an update for 0day the same day they learned about the attacks. Some administrators installed the update immediately, but as usual, there are others who did not.

Update WordPress File Manager immediately was last modified: 7 September, 2020, 10: 38 am by giorgos

spread the news

  • Facebook
  • Twitter
  • Reddit
  • Printing
  • Email

Read them Technology News from all over the world, with the validity of iGuRu.gr

Follow us on Google News


Competition: Newstag: 0day, File Manager, wordpress

You May Also Like

How can WordPress run faster?
Wprecon: Discover Vulnerabilities in WordPress CMS
WordPress 5.6 Simone (Nina) new version

About Us giorgos

George still wonders what he's doing here ...

Previous Post: « Aircrack-ng 1.6 the best Wi-Fi hacking suite
Next Post: Complete Internet Repair Program (presentation) »

Reader Interactions

Comment Policy:

IGuRu.gr does not publish the comments immediately. Malicious comments, comments that include ads, or comments that are offensive are deleted without notice. We do not adopt the opinions expressed by our readers.
Your comments will be displayed after approval by the administrators


Leave your comment
Ακύρωση απάντησης

Your email address is not published. Τα υποχρεωτικά πεδία σημειώνονται με *

 

 © 2021 · iGuRu.gr · ☢ · Keep It Simple Stupid Genesis theme

about  ·   get in touch  ·  rss  ·  sitemap  ·  cough

loading Cancel
Could not post post - check your email address!
Email verification failed, please try again
Your blog can not post posts via email.