WebSence has discovered a new mass infection of blogs on Wordpress



    Yes, the more popular a software product becomes, the more there are people who, through the vulnerabilities they find in this software, in any way benefit. Who is legal, reporting errors and receiving a reward, who is completely illegal. The company WebSence recently reported on a new wave of malware infecting blogs based on CMS Wordpress discovered by its experts. The wave is not so massive, but anyway, you should pay attention to this news.

    In total, experts found approximately 30 thousand blogs based on the specified CMS. Blogs can be judged to be infected with automated software. Well, the goal of the attackers is to distribute their program - a fake antivirus. In general, everything is fairly common. Interestingly, in this case, it’s not the webmasters and their sites that suffer, but the visitors. The latter redirects (in three stages) to a site with fake antivirus products. On this site a message is displayed to the user stating that his computer is infected. Well, then everything is knurled.

    All infected blog pages had this code in the footer.



    The spread of false anti-virus is not a new topic, but in this case it all became very massive, and the distribution of malicious software is carried out by an unusual method. Interestingly, most of the blogs that were discovered by experts from WebSence are not related to each other. In addition, these blogs are located on different hosting sites, and have a variety of topics. The common thing in this case is that the sites were running on an outdated version of Wordpress. As a result, about 200 thousand pages were compromised (as already mentioned above, these are 30 thousand resources).

    Approximately 85% of hacked blogs are located in the United States, but this is more a coincidence than the intentional work of attackers.

    Via websense.com

    Also popular now: