Home SECURITY Cyberattacks hit 1.6 million WordPress sites

Cyberattacks hit 1.6 million WordPress sites

0
Cyberattacks hit 1.6 million WordPress sites

Attackers are attacking four WordPress plugins and 15 Epsilon Framework themes, and for one of them a patch has not yet been released.

image

Wordfence analysts this week fixed a huge wave of attacks on 1.6 million WordPress sites. Attacks come from 16,000 IP addresses.

Attackers are attacking four WordPress plugins and 15 Epsilon Framework themes, and for one of them a security patch has not yet been released.

Patches for some of the plugins under attack were released back in 2018, while others were released just this week. Affected plugins: PublishPress Capabilities, Kiwi Social Plugin, Pinterest Automatic, and WordPress Automatic.

Epsilon Framework Topics Covered: Shapely, NewsMag, Activello, Illdy, Allegiant, Newspaper X, Pixova Lite, Brilliance, MedZone Lite, Regina Lite, Transcend, Affluent, Bonkers, Antreas, and NatureMag Lite (no patch).

As explained by the analysts, in most cases attackers update the users_can_register option by enabling and configuring the default_role option as an administrator. This allows them to register on any site with administrator privileges and gain control over it.

In order to check if a site has been compromised, operators should check all user accounts for malicious add-ons, which should be removed immediately if found.

Then you need to check the site settings here: http: // examplesite[.]com / wp-admin / options-general.php and check the members and default role settings for new users.

It is also recommended that you update your plugins and themes as soon as possible, even if they are missing from the above lists. If you are using a NatureMag Lite theme that does not have a fix, you should uninstall it.

Updating plugins and themes on already compromised sites will not eliminate the threat.

Source link

www.securitylab.ru

LEAVE A REPLY

Please enter your comment!
Please enter your name here