Fake WordPress Plugin SiteSpeed Serves Malicious Ads & Backdoors

Fake WordPress plugins appear to be trending as an effective way of establishing a foothold on compromised websites.

During a recent investigation, we discovered a fake component which was masquerading as a legitimate plugin. Named SiteSpeed, it contained a lot of interesting malicious capabilities.

Unwanted Advertisements

The malicious plugin can be used by the attacker to display ads on the website. To avoid detection and target specific website visitors, the plugin has many functions to check the user-agent, referrer, and the IP of the user accessing the page.

Continue reading Fake WordPress Plugin SiteSpeed Serves Malicious Ads & Backdoors at Sucuri Blog.

Story added 16. July 2020, content source with full text you can find at link above.

Fake WordPress Plugin SiteSpeed Serves Malicious Ads & Backdoors

More antivirus and malware news?

Ads

Security news

Malware

Security

IT security

About site

Search Terms Tips

Recent New Tips

Recent Posts