Tag: Rogue WordPress Plugin

Rogue WordPress Plugin Exposes E-Commerce Sites to Credit Card Theft
News

Rogue WordPress Plugin Exposes E-Commerce Sites to Credit Card Theft

Researchers studying threats have found a WordPress plugin that is rogue and may be used to insert malicious JavaScript code and create false administrator users in order to steal credit card information. Sucuri claims that the skimming is a component of a Magecart effort aimed at e-commerce websites. "As with many other malicious or fake WordPress plugins it contains some deceptive information at the top of the file to give it a veneer of legitimacy," Ben Martin, a security researcher, said. "In this case, comments claim the code to be 'WordPress Cache Addons.'" Usually, hijacked admin accounts or security holes in other installed plugins are the means by which malicious plugins get onto WordPress websites read more Rogue WordPress Plugin Exposes E-Commerce Sites to Credit Card ...