NEW: Hackers are hijacking several WordPress sites to "spray and pray" Windows and MacOS infostealing malware, according to a cybersecurity firm.
Company says there are thousands of compromised websites and as of yesterday the hacking campaign was “very much live.”
The websites were displaying a fake Chrome browser update page, we saw one of these pages yesterday.
https://techcrunch.com/2025/01/29/hackers-are-hijacking-wordpress-sites-to-push-windows-and-mac-malware/
=> More informations about this toot | More toots from lorenzofb@infosec.exchange
We updated the story to include Automattic's comment, which they send today.
https://techcrunch.com/2025/01/29/hackers-are-hijacking-wordpress-sites-to-push-windows-and-mac-malware/
=> More informations about this toot | More toots from lorenzofb@infosec.exchange
@lorenzofb idk if its related but the wpscanning has been off the charts recently such a pita.
=> More informations about this toot | More toots from nf3xn@mastodon.social
@lorenzofb Interesting (hands off) position for them to take.
Because I definitely remember security being one of main public facing arguments for Automattic/WordPress.org (or whoever) for eminent domain-ing the Advanced Custom Fields plugin a few months ago.
https://wordpress.org/news/2024/10/secure-custom-fields/
=> More informations about this toot | More toots from ryanboswell@sfba.social
@lorenzofb should “spray and pay” be “spray and pray”?
=> More informations about this toot | More toots from jzb@mastodon.social
@jzb Good catch. Fixed.
=> More informations about this toot | More toots from lorenzofb@infosec.exchange
@lorenzofb My super power is catching other people's typos. My kryptonite is my own typos...
=> More informations about this toot | More toots from jzb@mastodon.social This content has been proxied by September (3851b).Proxy Information
text/gemini
