plugin Archives - Help Net Security

Magecart hacks Shopper Approved to simultaneously hit many e-commerce sites

October 10, 2018
e-commerce
Magecart
plugin

The cybercriminal groups under the Magecart umbrella strike again and again, and one of them has apparently specialized in compromising third parties to more easily get in as …

WP Security Audit Log: Keeping a watchful eye on your WordPress sites

WordPress is, without a doubt, the most popular website management system in use. The latest statistics put the number of websites running on WordPress over 60 million, and …

Fake SEO plugin backdoors WordPress installations

April 3, 2017
backdoor
malware
plugin

Administrators of WordPress sites, beware! A fake SEO plugin is being used by attackers to compromise WP installations. The plugin in question is named WP-Base-SEO, and is a …

Cisco WebEx extension opens Chrome users to drive-by malware attacks

January 24, 2017
browser
Chrome
Cisco

Windows users who have the widely used Cisco WebEx extension installed on Chrome are in danger of getting silently hacked when visiting a malicious website. The vulnerability, …

Slew of WP-based business sites compromised to lead to ransomware

July 20, 2016
botnet
CMS
exploit kit

If an approach works well, there is no reason to change tack, and the masters of the SoakSoak botnet are obviously of the same belief. A year and a half after they have been …

Popular WordPress plugin opens backdoor, steals user credentials

March 7, 2016
backdoor
malware
plugin

If you are one of the 10,000+ users of the Custom Content Type Manager (CCTM) WordPress plugin, consider your site to be compromised and proceed to clean your installation up, …