WordPress sites backdoored with ad fraud plugin

Categories: Threat Intelligence

Tags: ad fraud

Tags: popunder

Tags: ads

Tags: fraud

Tags: wordpress

Tags: plugins

Popunders are the ideal vehicle to serve ad fraud. In this case, we investigate a scheme where a webpage you can’t see is loading a bunch of ads while code mimics user activity by scrolling and visiting links.

(Read more…)

The post WordPress sites backdoored with ad fraud plugin appeared first on Malwarebytes Labs.

Read more

XSS plugin vulnerabilities plague WordPress users

Credit to Author: Danny Bradbury| Date: Tue, 03 Mar 2020 10:44:44 +0000

Thousands of active WordPress plugins have been hit with a swathe of XSS vulnerabilities that could give attackers complete control of the site.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/Bjh4-1ye-9E” height=”1″ width=”1″ alt=””/>

Read more

WordPress plugin hole could have allowed attackers to wipe websites

Credit to Author: Danny Bradbury| Date: Wed, 19 Feb 2020 11:21:03 +0000

A WordPress plugin with over 100,000 active installations had a bug that could have allowed unauthorised attackers to wipe its users’ blogs clean, it emerged this week.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/GCOxf6ngpvk” height=”1″ width=”1″ alt=””/>

Read more

Update now! Popular WordPress plugins have password bypass flaws

Credit to Author: John E Dunn| Date: Thu, 16 Jan 2020 13:47:38 +0000

Researchers have discovered bad authentication bypass vulnerabilities affecting two WordPress plugins which should be patched as soon as possible.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/qhJn8G3sG5M” height=”1″ width=”1″ alt=””/>

Read more

WordPress sites hit by malvertising

Credit to Author: Danny Bradbury| Date: Thu, 07 Nov 2019 14:01:01 +0000

An old piece of malware is storming the WordPress community, enabling its perpetrators to take control of sites and inject code of their choosing.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/G42iCdpslDg” height=”1″ width=”1″ alt=””/>

Read more

Browser Guard combats privacy abuse, tracking, clickbait, and scammers

Credit to Author: Pieter Arntz| Date: Thu, 19 Sep 2019 18:27:51 +0000

The free Malwarebytes Browser Guard extension combats privacy abuse, user tracking, clickbait, unwanted advertisements, and tech support scammers while offering granular control and faster browsing.

Categories:

Tags:

(Read more…)

The post Browser Guard combats privacy abuse, tracking, clickbait, and scammers appeared first on Malwarebytes Labs.

Read more

WordPress 5.2.3 fixes new clutch of security vulnerabilities

Credit to Author: John E Dunn| Date: Mon, 09 Sep 2019 10:31:30 +0000

WordPress version 5.2.3 has just appeared on the download pipe featuring half a dozen security fixes and software enhancements.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/j-xSSrxRMDU” height=”1″ width=”1″ alt=””/>

Read more

Caution: Misuse of security tools can turn against you

Credit to Author: Vasilios Hioureas| Date: Thu, 11 Jul 2019 17:34:57 +0000

If not implemented correctly, the very security tools we use to keep our information private may actually cause data leaks themselves. We outline a few cases and provide suggestions for researchers and security admins.

Categories:

Tags:

(Read more…)

The post Caution: Misuse of security tools can turn against you appeared first on Malwarebytes Labs.

Read more