Attacks on over 300.000 vulnerable WordPress pages

Attackers take advantage of a critical remote code execution flaw that affects over 600.000 sites . Her vulnerability we mentioned in a previous publication and concerns websites running vulnerable versions of the File plugin .

Critical vulnerability allows unauthorized users to upload malicious PHP files and run malicious code. The File Manager developer team addressed the issue with the release of File Manager 6.9.

Παρόλο που το ελάττωμα επιδιορθώθηκε άμεσα όταν ενημερώθηκαν οι προγραμματιστές από τον υπεύθυνο ασφαλείας της Seravo Ville Korhonen, που ανακάλυψε το 0day και τις συνεχιζόμενες επιθέσεις που προσπαθούσαν να το εκμεταλλευτούν, ερευνητές από την εταιρεία ασφαλείας Defiant εντόπισαν περισσότερους από 1,7 vulnerable websites from 1st to 3rd September.

In an updated report released today, Defiant threat analyst Ram Gall states that hackers have not stopped their "siege", and the total number of WordPress sites they target has reached 2,6 million.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by Anastasis Vasileiadis

Translations are like women. When they are beautiful they are not faithful and when they are faithful they are not beautiful.

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).