dcsimg

WordPress Plugin, Includes Backdoor to Alter Files

By HTMLGoodies Staff

Sucuri's investigations have revealed a new plugin that looked like an abandoned project but has now mysteriously changed owner followed by a name change to for the plugin to wooranker along with a push of the new version. With all of the plugin updates being nefarious in nature. Additionally, wooranker also added the CCTM_Communicator.php file, which worked together with another, older, legitimate plugin file. The purpose of these two files was to ping wooranker's server about the presence of a newly infected site. Continue reading this story here.



Make a Comment

Loading Comments...

  • Web Development Newsletter Signup

    Invalid email
    You have successfuly registered to our newsletter.

    By submitting your information, you agree that htmlgoodies.com may send you HTMLGOODIES offers via email, phone and text message, as well as email offers about other products and services that HTMLGOODIES believes may be of interest to you. HTMLGOODIES will process your information in accordance with the Quinstreet Privacy Policy.

  •  
  •  
  •  
Thanks for your registration, follow us on our social networks to keep up-to-date