Monday, April 28, 2025
HomeCVE/vulnerabilityHackers Initiate Attacks Against Unpatched WordPress Sites

Hackers Initiate Attacks Against Unpatched WordPress Sites

Published on

SIEM as a Service

Follow Us on Google News

Few Weeks before WordPress secretly fixed the Zero-day Vulnerability in recent 4.7.2 security update .But researchers now start to see that many more Recent attacks are trying to spam users into buying drugs by phishing scam and looking for payment card detailsĀ  leave behind links to rogue pharmaceutical websites .

Since latest updates released by word press ,many WordPress website are not yet updated the current version .

Up to 20 attackers or gatherings of assailants are ruining WordPress sites that haven’t yet connected a recent patch for a critical vulnerability.

- Advertisement - Google News

The vulnerability, situated in the stage’s REST API, permits unauthenticated attackers to change the substance of any post or page inside a WordPress site. The defect was settled in WordPress 4.7.2, discharged on Jan. 26.

The simplicity of execution is so low thus simple, we’re seeing script kiddies get this endeavor and have a field day with it,” said Logan Kipp of SiteLock. We’re seeing these 20 or so extraordinary performing artists battling about control and overwriting disfigurement, ordinarily minutes separated.

ā€œThis is the first case we’re aware of where someone is trying for monetary gain,ā€ Kipp said. ā€œThey’re trying to get you to visit rogue pharmacy sites where there’s an equally high chance they’re going to steal your credit card number and run. North of 50 percent of the time, that’s the case with these sites.ā€

Logan Kipp of SiteLock Said ,

If you have applied WordPress patch 4.7.2, the vulnerability is no longer present. Based on the information we’ve gathered, if you have disabled the REST API (enabled by default), you are not affected by the vulnerability.

We applied a virtual patch shortly after the issue was identified on January 21st. This virtual patch has protected all WordPress websites in the SiteLock network from this exploit since application. Nevertheless, we strongly advise that anyone still running WordPress v4.7 or 4.7.1 to apply the most recent WordPress update immediately.

By and large, WordPress site mutilations in view of this defenselessness raised rapidly from many thousands to more than 800,000 in a 48-hour time frame les sthan two weeks prior. The reason, as per WordFence, a WordPress security module designer, is that aggressors refined assaults to sidestep a decide that WordFence and others had executed to stem the tide of assaults. Two unique crusades followed by WordFence were in charge of near 700,000 ruinations all alone.

What is SiteLock and protection method:

SiteLock and the WordPress Security Team continue to maintain a close relationship by collaborating on security intelligence for the benefit of all WordPress users. In cases like this, in which a WordPress security patch is developed to prevent an exploit, SiteLock and the WordPress Security Team share advanced warnings with each other and quietly put additional security measures in place while the code for a patch is developed. This helps both parties to protect as many WordPress users as possible before the public release of the patch. Relax. We’ve got your back!

Also Read :

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

RansomHub Ransomware Deploys Malware to Breach Corporate Networks

The eSentire’s Threat Response Unit (TRU) in early March 2025, a sophisticated cyberattack leveraging...

19 APT Hackers Target Asia-based Company Servers Using Exploited Vulnerabilities and Spear Phishing Email

The NSFOCUS Fuying Laboratory’s global threat hunting system identified 19 sophisticated Advanced Persistent Threat...

FBI Reports ₹1.38 Lakh Crore Loss in 2024, a 33% Surge from 2023

The FBI’s Internet Crime Complaint Center (IC3) has reported a record-breaking loss of $16.6...

Fog Ransomware Reveals Active Directory Exploitation Tools and Scripts

Cybersecurity researchers from The DFIR Report’s Threat Intel Group uncovered an open directory hosted...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

SAP NetWeaver 0-Day Flaw Actively Exploited to Deploy Webshells

SAP disclosed a critical zero-day vulnerability, identified asĀ CVE-2025-31324, in its NetWeaver Visual Composer component. This...

China Claims U.S. Cyberattack Targeted Leading Encryption Company

China has accused U.S. intelligence agencies of carrying out a sophisticated cyberattack against one...

Critical FastCGI Library Flaw Exposes Embedded Devices to Code Execution

A severe vulnerability (CVE-2025-23016) in the FastCGI library-a core component of lightweight web server...