Gootloader inside out
Credit to Author: Gabor Szappanos| Date: Thu, 16 Jan 2025 17:00:02 +0000
Open-source intelligence reveals the server-side code of this pernicious SEO-driven malware – without needing a lawyer afterward
Read moreWordpress
A week in security (May 22-28)
Categories: News Tags: Cisco Tags: Zyxel Tags: ChatGPT Tags: Malvertising Tags: Apple Tags: Google Tags: insider threat Tags: Pentagon explosion Tags: CISA Tags: ransomware guide Tags: Rheinmetall Tags: BlackBasta Tags: WordPress A list of topics we covered in the week of May 22- 28 of 2023 |
The post A week in security (May 22-28) appeared first on Malwarebytes Labs.
Read more“Beautiful Cookie Consent Banner” WordPress plugin vulnerability: Update now!
Categories: Business Tags: beautiful cookie consent banner Tags: Wordpress Tags: plugin Tags: vulnerability Tags: exploit Tags: XSS Tags: javascript Tags: update Tags: website We take a look at a vulnerability in a popular WordPress plugin. It’s been fixed, but you’ll need to update as soon as you can! |
The post “Beautiful Cookie Consent Banner” WordPress plugin vulnerability: Update now! appeared first on Malwarebytes Labs.
Read moreWooCommerce Payments plugin for WordPress has an admin-level hole – patch now!
Credit to Author: Paul Ducklin| Date: Fri, 24 Mar 2023 17:48:35 +0000
Admin-level holes in websites are always a bad thing… and for “bad”, read “worse” if it’s an e-commerce site.
Read moreA week in security (February 13 – 19)
Categories: News Tags: Josh Saxe Tags: Lock and Code S04E04 Tags: AI Tags: artificial intelligence Tags: endpoint security leader Tags: CISA Tags: DPRK Tags: ChatGPT Tags: informed consent Tags: valentine’s day Tags: password sharing Tags: Android Tags: data leaks Tags: ESXiArgs Tags: TrickBot Tags: Wordpress Tags: fake Hogwarts Legacy Tags: Arris router Tags: ransomware Tags: Mortal Kombat Tags: Section 230 Tags: iPhone calendar spam The most interesting security related news from the week of February 13 to 19. |
The post A week in security (February 13 – 19) appeared first on Malwarebytes Labs.
Read moreWordPress sites backdoored with ad fraud plugin
Categories: Threat Intelligence Tags: ad fraud Tags: popunder Tags: ads Tags: fraud Tags: wordpress Tags: plugins Popunders are the ideal vehicle to serve ad fraud. In this case, we investigate a scheme where a webpage you can’t see is loading a bunch of ads while code mimics user activity by scrolling and visiting links. |
The post WordPress sites backdoored with ad fraud plugin appeared first on Malwarebytes Labs.
Read moreUpdate your LearnPress plugins now!
Categories: News Tags: wordpress Tags: learnpress Tags: vulnerability Tags: SQL Tags: injection Tags: update Tags: fix Tags: plugin Tags: patch We take a look at reports of a WordPress plugin issue. It’s been fixed, but you may need to update! |
The post Update your LearnPress plugins now! appeared first on Malwarebytes Labs.
Read moreMalware targets 30 unpatched WordPress plugins
Categories: News Tags: WordPress Tags: exploit Tags: vulnerability Tags: plugin Tags: theme Tags: update Tags: linux malware Tags: backdoor It’s time to check your website is up to date. |
The post Malware targets 30 unpatched WordPress plugins appeared first on Malwarebytes Labs.
Read moreWPGateway WordPress plugin vulnerability could allow full site takeover
Categories: News Tags: WPGateway Tags: WordPress Tags: plugin Tags: vulnerability Tags: CVE We take a look at a vulnerability being exploited in the wild related to the WPGateway WordPress plugin. |
The post WPGateway WordPress plugin vulnerability could allow full site takeover appeared first on Malwarebytes Labs.
Read moreBackupBuddy WordPress plugin vulnerable to exploitation, update now!
Categories: News Tags: BackupBuddy Tags: WordPress Tags: vulnerability Tags: exploit Tags: hack Tags: compromise Tags: update We take a look at a vulnerability in popular WordPress plugin BackupBuddy, and the steps you need to take to fix it. |
The post BackupBuddy WordPress plugin vulnerable to exploitation, update now! appeared first on Malwarebytes Labs.
Read more