Over 4,500 WordPress Sites Hacked to Redirect Visitors to Sketchy Ad Pages

Jan 25, 2023Ravie LakshmananWebsite Security / WordPress

A massive campaign has infected over 4,500 WordPress websites as part of a long-running operation that’s been believed to be active since at least 2017.

According to GoDaddy-owned Sucuri, the infections involve the injection of obfuscated JavaScript hosted on a malicious domain named “track[.]violetlovelines[.]com” that’s designed to redirect visitors to unwanted sites.

The latest operation is said to have been under way since December 26, 2022, according to data from urlscan.io. A prior wave seen in early December 2022


More Info

About mblog.my

Check Also

How We Built a New Home for WordPress.com Developers Using the Twenty Twenty-Four Theme – WordPress.com News

In the last few weeks, our team here at WordPress.com has rebuilt developer.wordpress.com from the …

Leave a Reply

Your email address will not be published. Required fields are marked *