Tag: Rogue Admin Accounts

Multiple WordPress Plugins Compromised: Hackers Create Rogue Admin Accounts
News

Multiple WordPress Plugins Compromised: Hackers Create Rogue Admin Accounts

A number of WordPress plugins have been compromised to introduce malicious code through backdoors, enabling the creation of rogue administrator accounts that may be used to carry out arbitrary tasks. As per the Wordfence security researcher Chloe Chamberland's report on Monday, the injected malware tries to create a new administrator user account and then transmits those information back to the attacker-controlled server. Furthermore, it seems that the threat actor also introduced malicious JavaScript into website footers, which spreads SEO spam across the page. The usernames of the admin accounts are "Options" and "PluginAuth," and the IP address 94.156.79[.]8 is where the account information was stolen read more about Multiple WordPress Plugins Compromised Hackers Create Rogue ...