Hidden Backdoors Uncovered in WordPress Malware Investigation

At Sucuri, we often encounter cases where malware is deeply embedded in websites, hidden in files and scripts that can easily escape detection. In this article, we’ll walk you through a real-life incident where a customer contacted us about unusual behavior on their WordPress website. After a detailed investigation, we uncovered multiple backdoors allowing attackers to execute malicious code remotely.

What was discovered?

During our scan, we found a suspicious file located in /wp-content/mu-plugins/index.php.

Continue reading Hidden Backdoors Uncovered in WordPress Malware Investigation at Sucuri Blog.