Tag: WordPress backdoor Page 1/5

What is the web shell that infects (hackers install) WordPress?

What is the web shell that infects (hackers install) WordPress?

This section describes a web shell that can infect (or be installed by hackers) WordPress.

Read more

Malware that embeds malicious code in cookies in WordPress

Malware that embeds malicious code in cookies in WordPress

This section describes malware that embeds malicious code in cookies in WordPress.

Read more

PHP file malware with the same name as the folder name that infects systems other than WordPress

PHP file malware with the same name as the folder name that infects systems other than WordPress

We will discuss this case because malware was discovered on a site with a mix of WordPress and other systems, with PHP files having the same names as the folders that are also installed in the non-WordPress systems.

Read more

Malware infection of wordpress mu-plugins folder

Malware infection of wordpress mu-plugins folder

There have been an increasing number of cases of malware infection of the wordpress mu-plugins folder. This case study will be explained.

Read more

Online WordPress malware scanning site.

Online WordPress malware scanning site.

Here are some sites online where you can scan your WordPress output for malware (not a vulnerability scan) to see if there is any malicious code mixed in with the HTML of your site.

Read more

WordPress content injection case study, online casino site operating on its own server

WordPress content injection case study, online casino site operating on its own server

Here is a case study of a WordPress content injection that caused an online casino site to operate on its own server.

Read more

Malware removal for a group of WordPress sites spanning multiple domains on a single server

Malware removal for a group of WordPress sites spanning multiple domains on a single server

We have compiled a list of precautions for malware removal for a group of WordPress sites spanning multiple domains on a single server.

Read more

Malware wp-blog-header.php, wp-cron.php, .htaccess proliferating outside of the public folder on the server in WordPress

Malware wp-blog-header.php, wp-cron.php, .htaccess proliferating outside of the public folder on the server in WordPress

If you find multiple wp-blog-header.php, wp-cron.php, and .htaccess files outside of the public folder on your server in WordPress, be careful. These files are most likely malware that propagates automatically.

Read more

The 3 most targeted and most dangerous vulnerabilities in WordPress

The 3 most targeted and most dangerous vulnerabilities in WordPress

The following are the three vulnerabilities that are most likely to be exploited if discovered on a WordPress site. If your site contains any plug-ins or other components that are vulnerable to these vulnerabilities, we recommend that you take action as soon as possible.

Read more

If you get a 403Forbidden error on the bottom page of your WordPress site or on the admin page, you may be infected with malware

If you get a 403Forbidden error on the bottom page of your WordPress site or on the admin page, you may be infected with malware

If you get a 403Forbidden error on the bottom page of your WordPress site or on the admin page, you may be infected with malware

Read more

Glossary of common vulnerability attacks in WordPress

Glossary of common vulnerability attacks in WordPress

This is a brief glossary of common vulnerability attacks on WordPress.

Read more

Why does WordPress malware parasitize legitimate files?

Why does WordPress malware parasitize legitimate files?

Unlike common computer viruses, malware that infects WordPress often rewrites the legitimate WordPress core files to become a parasite. We will explain the reasons for this and how to deal with it.

Read more

Are there pages registered in Google Search Console that I don't remember creating?

Are there pages registered in Google Search Console that I don’t remember creating?

If a page you do not remember creating is registered in Google Search Console, it is possible that your WordPress site was infected with malware and generated a malicious page.

Read more

Fake Plugin Installations Spreading in WordPress Super Socialat

Fake Plugin Installations Spreading in WordPress Super Socialat

This section describes the installation of a fake plugin Super Socialat spreading in WordPress.

Read more

Example of malware spreading to initial subdomain folders of a server

Example of malware spreading to initial subdomain folders of a server

Many of today’s malware spread infection to all folders beyond the domain folders in the server. In this article, we will discuss the infection of initial subdomain folders on unused servers, which is often overlooked.

Read more

How do WordPress hackers find site vulnerabilities and deface sites? What are effective security measures?

How do WordPress hackers find site vulnerabilities and deface sites? What are effective security measures?

When a site is hacked and defaced, some webmasters generally assume that hackers have targeted your site and infiltrated it with advanced technology, but this is not the case with WordPress. This is not the case with WordPress.

Read more

Notes on what to do if multiple WordPress sites across the server have been infected (tampered with) by malware.

Notes on what to do if multiple WordPress sites across the server have been infected (tampered with) by malware.

We will explain the precautions to take when multiple WordPress sites across the server have been infected (tampered with) by malware.

Read more

What is a web shell, a piece of malware that can be installed via a vulnerability in WordPress?

What is a web shell, a piece of malware that can be installed via a vulnerability in WordPress?

This section describes a web shell that can be installed via a vulnerability in WordPress.

Read more

Page 1/5