Why miscreants inject JS into compromised WordPress sites • The Register

A years-long campaign by miscreants to insert malicious JavaScript into vulnerable WordPress sites, so that visitors are redirected to scam websites, has been documented by reverse-engineers.

An investigation by analysts at Sucuri into malware found on WordPress installations revealed a much larger and ongoing campaign that last month, we’re told, hijacked more than 6,600 websites. The team has seen a spike in complaints this month related to the intrusions, according to analyst Krasimir Konov.

“The websites all shared a common issue — malicious JavaScript had been injected within their…


More Info

About mblog.my

Check Also

WP Engine Achieves Prestigious ISO/IEC 27001:2013 Certification for Enterprise Security for WordPress Sites

WP Engine proves maturity of security program and power of WordPress, meeting international standards for …

Leave a Reply

Your email address will not be published. Required fields are marked *