wordpress – Page 31 – WindowsTechs.com

Unkown attack on linux server wordpress website

Posted on June 23, 2019 by serversetup co

I have a WordPress site. Recently under a serious DDoS attack.

For this WordPress site I use nginx, varnish and apache in the backend.

A part of access log shows this:

24.41.213.36 – – [23/Jun/2019:12:58:13 +0430] “GET / … Continue reading Unkown attack on linux server wordpress website→

Irked Researcher Discloses Facebook WordPress Plugin Flaws

Posted on June 17, 2019 by Lindsey O'Donnell

Researchers at Plugin Vulnerabilities cite grudge and irresponsibly disclose bugs in two WordPress plugins from Facebook. Continue reading Irked Researcher Discloses Facebook WordPress Plugin Flaws→

New Flaw in WordPress Live Chat Plugin Lets Hackers Steal and Hijack Sessions

Posted on June 11, 2019 by Unknown

Security researchers have been warning about a critical vulnerability they discovered in one of a popular WordPress Live Chat plugin, which, if exploited, could allow unauthorized remote attackers to steal chat logs or manipulate chat sessions.

The vu… Continue reading New Flaw in WordPress Live Chat Plugin Lets Hackers Steal and Hijack Sessions→

WordPress Sites Worldwide Hit with ‘Call-Girl’ Search-Engine Pollution

Posted on June 10, 2019 by Tara Seals

A web spam campaign targeting Koreans is affecting non-hacked websites worldwide. Continue reading WordPress Sites Worldwide Hit with ‘Call-Girl’ Search-Engine Pollution→

What does the attached php malware do?

Posted on June 2, 2019 by returneax

Found this on a WordPress server under the filename wp-includes/class-wp-image-editor-fd.php when WordFence picked it up as being an unexpected file.

Link to source is here: https://pastebin.com/DWe4d33K

Very clearly looks … Continue reading What does the attached php malware do?→

Attackers are exploiting WordPress plugin flaw to inject malicious scripts

Posted on May 30, 2019 by Zeljka Zorz

Attackers are leveraging an easily exploitable bug in the popular WP Live Chat Support plugin to inject a malicious JavaScript in vulnerable sites, Zscaler warns. The company has discovered 47 affected sites (some have been cleaned up in the meantime) … Continue reading Attackers are exploiting WordPress plugin flaw to inject malicious scripts→

Sucuri detects malware on wordpress but I can’t find the malicious code

Posted on May 30, 2019 by Alison Lopez

Yesterday I got a report asking us to check some wordpress website because the person’s antivirus blocked said web.

I ran the Sucuri Site Check and it indeed detects malware:

“Known javascript malware: malware.injection?39”

<!–codes… Continue reading Sucuri detects malware on wordpress but I can’t find the malicious code→

WordPress Plugin Has Unpatched Privilege Escalation Flaw, Warn Researchers

Posted on May 29, 2019 by Lindsey O'Donnell

Researchers are warning of flaws in two WordPress plugins – Slick Popup and WP Database Backup – including one that remains unpatched. Continue reading WordPress Plugin Has Unpatched Privilege Escalation Flaw, Warn Researchers→

Joomla, BlueKeep, & Chinese OS – Hack Naked News #220

Posted on May 28, 2019 by Security Weekly Productions

This week, Microsoft brings hardware-based isolation to Chrome & Firefox, the US border’s license plate scanning technology hacked, Crooks leverage WordPress and Joomla sites for malicious redirects, the Chinese military wants to replace … Continue reading Joomla, BlueKeep, & Chinese OS – Hack Naked News #220→

Joomla and WordPress Found Harboring Malicious Redirect Code

Posted on May 24, 2019 by Tom Spring

New .htaccess injector threat on Joomla and WordPress websites redirects to malicious websites. Continue reading Joomla and WordPress Found Harboring Malicious Redirect Code→