Global CyberSecurity

Fake WordPress Plugin SiteSpeed Serves Malicious Ads & Backdoors

0

Published on 07/16/2020 – Last Updated on 07/16/2020 by OTC

Fake WordPress plugins appear to be trending as an effective way of establishing a foothold on compromised websites.

During a recent investigation, we discovered a fake component which was masquerading as a legitimate plugin. Named SiteSpeed, it contained a lot of interesting malicious capabilities.

Unwanted Advertisements

The malicious plugin can be used by the attacker to display ads on the website. To avoid detection and target specific website visitors, the plugin has many functions to check the user-agent, referrer, and the IP of the user accessing the page.

Continue reading Fake WordPress Plugin SiteSpeed Serves Malicious Ads & Backdoors at Sucuri Blog.

That’s a Wrap: MozCon Virtual 2020 Day Two Recap

Previous article

Bulgaria hosted Breeze 2020 exercise kicks off in the Black Sea

Next article

You may also like

Comments

Comments are closed.