Fake Human Verification Spam
We recently released an update to our Labs Knowledgebase for new plugins that had been targeted during the month of July 2019.
One of these newly targeted plugins was Advanced Booking Calendar — and it didn’t take long before we were receiving clean up requests for websites that had already been exploited through this plugin.
Malicious Payload in Appointment Booking Plugin
After our investigation, we discovered that the malicious payload was similar to the one listed in our July 2019 Labs Knowledgebase post.