Friday, March 29, 2024

Hackers Initiate Attacks Against Unpatched WordPress Sites

Few Weeks before WordPress secretly fixed the Zero-day Vulnerability in recent 4.7.2 security update .But researchers now start to see that many more Recent attacks are trying to spam users into buying drugs by phishing scam and looking for payment card detailsĀ  leave behind links to rogue pharmaceutical websites .

Since latest updates released by word press ,many WordPress website are not yet updated the current version .

Up to 20 attackers or gatherings of assailants are ruining WordPress sites that haven’t yet connected a recent patch for a critical vulnerability.

The vulnerability, situated in the stage’s REST API, permits unauthenticated attackers to change the substance of any post or page inside a WordPress site. The defect was settled in WordPress 4.7.2, discharged on Jan. 26.

The simplicity of execution is so low thus simple, we’re seeing script kiddies get this endeavor and have a field day with it,” said Logan Kipp of SiteLock. We’re seeing these 20 or so extraordinary performing artists battling about control and overwriting disfigurement, ordinarily minutes separated.

ā€œThis is the first case weā€™re aware of where someone is trying for monetary gain,ā€ Kipp said. ā€œTheyā€™re trying to get you to visit rogue pharmacy sites where thereā€™s an equally high chance theyā€™re going to steal your credit card number and run. North of 50 percent of the time, thatā€™s the case with these sites.ā€

Logan Kipp of SiteLock Said ,

If you have applied WordPress patch 4.7.2, the vulnerability is no longer present. Based on the information weā€™ve gathered, if you have disabled the REST API (enabled by default), you are not affected by the vulnerability.

We applied a virtual patch shortly after the issue was identified on January 21st. This virtual patch has protected all WordPress websites in the SiteLock network from this exploit since application. Nevertheless, we strongly advise that anyone still running WordPress v4.7 or 4.7.1 to apply the most recent WordPress update immediately.

By and large, WordPress site mutilations in view of this defenselessness raised rapidly from many thousands to more than 800,000 in a 48-hour time frame les sthan two weeks prior. The reason, as per WordFence, a WordPress security module designer, is that aggressors refined assaults to sidestep a decide that WordFence and others had executed to stem the tide of assaults. Two unique crusades followed by WordFence were in charge of near 700,000 ruinations all alone.

What is SiteLock and protection method:

SiteLock and the WordPress Security Team continue to maintain a close relationship by collaborating on security intelligence for the benefit of all WordPress users. In cases like this, in which a WordPress security patch is developed to prevent an exploit, SiteLock and the WordPress Security Team share advanced warnings with each other and quietly put additional security measures in place while the code for a patch is developed. This helps both parties to protect as many WordPress users as possible before the public release of the patch. Relax. Weā€™ve got your back!

Also Read :

Website

Latest articles

Beware Of Weaponized Air Force invitation PDF Targeting Indian Defense And Energy Sectors

EclecticIQ cybersecurity researchers have uncovered a cyberespionage operation dubbed "Operation FlightNight" targeting Indian government...

WarzoneRAT Returns Post FBI Seizure: Utilizing LNK & HTA File

The notorious WarzoneRAT malware has made a comeback, despite the FBI's recent efforts to...

Google Revealed Kernel Address Sanitizer To Harden Android Firmware And Beyond

Android devices are popular among hackers due to the platformā€™s extensive acceptance and open-source...

Compromised SaaS Supply Chain Apps: 97% of Organizations at Risk of Cyber Attacks

Businesses increasingly rely on Software as a Service (SaaS) applications to drive efficiency, innovation,...

IT and security Leaders Feel Ill-Equipped to Handle Emerging Threats: New Survey

A comprehensive survey conducted by Keeper Security, in partnership with TrendCandy Research, has shed...

How to Analyse .NET Malware? – Reverse Engineering Snake Keylogger

Utilizing sandbox analysis for behavioral, network, and process examination provides a foundation for reverse...

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

GoPlus Labs, the leading Web3 security infrastructure provider, has unveiled a groundbreaking report highlighting...
Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Mitigating Vulnerability Types & 0-day Threats

Mitigating Vulnerability & 0-day Threats

Alert Fatigue that helps no one as security teams need to triage 100s of vulnerabilities.

  • The problem of vulnerability fatigue today
  • Difference between CVSS-specific vulnerability vs risk-based vulnerability
  • Evaluating vulnerabilities based on the business impact/risk
  • Automation to reduce alert fatigue and enhance security posture significantly

Related Articles