The latest attacks affect Joomla versions 1.5.0 through 3.4.5 and with such a huge install base, the CMS offers a tempting target for cybercriminals who can try to insert their own backdoors into a system using the CMS as an infection vector. “The attackers are doing an object injection via the HTTP user agent that leads to a full remote command execution,” explained Daniel Cid, founder and CTO of Sucuri, on the company’s blog. Learn more about this exploit here.