menu

WordPress Injection Exfiltrates Admin Login

2021-06-09 :: Luke
#backdoor  #login stealer  #$ccc_url  #wordpress  #PHP  #website malware  WordPress Injection Exfiltrates Admin Login
wp-login.php injection silently exfiltrates a victim’s username and password back to the attacker’s server.
Read more →

Magento 2 Skimmer Uses getCredentialStorage

2020-11-25 :: Luke
#getCredentialStorage  #PHP  #login stealer  #skimmer  #magento  #ecommerce  #website malware  Magento 2 Skimmer Uses getCredentialStorage
A PHP skimmer injected into a Magento 2 core file and used to steal login data from HTTP requests.
Read more →
Disclaimer: The research posted on this website is for information purposes only. Do not use it for illegal purposes.