menu

Popular Web Shell Variants Contain a Hidden Backdoor

2022-05-22 :: Luke
#wso yanz  #web shell  #stealer  #php backdoor  #PHP  #website malware  Popular Web Shell Variants Contain a Hidden Backdoor
Variants of popular PHP web shells have been popping up and analysis reveals that they contain a hidden backdoor used to steal the unauthorized access.
Read more →

Magento PHP One-Liner Backdoor

2021-12-09 :: Luke
#3bcea1436b9096a7c71182b7fa07ca1d  #php backdoor  #one liner  #ecommerce  #PHP  #website malware  Magento PHP One-Liner Backdoor
Analysis of a PHP one-liner found injected on Magento ecommerce websites and learn how it is used by attackers.
Read more →

WordPress Injection Exfiltrates Admin Login

2021-06-09 :: Luke
#php backdoor  #login stealer  #$ccc_url  #wordpress  #PHP  #website malware  WordPress Injection Exfiltrates Admin Login
wp-login.php injection silently exfiltrates a victim’s username and password back to the attacker’s server.
Read more →

Malware Disables Wordfence Security Plugin & Forges Timestamps

2020-12-16 :: Luke
#php backdoor  #plugin killer  #wordpress  #PHP  #website malware  Malware Disables Wordfence Security Plugin & Forges Timestamps
A malicious PHP file is used to take down Wordfence plugin before it adjusts its own mtime timestamp.
Read more →

PHP Injector Makes Evil Use of error_log

2020-12-15 :: Luke
#1550208479  #error_log  #injector  #php backdoor  #PHP  #website malware  PHP Injector Makes Evil Use of error_log
A PHP backdoor that injects its payload into the default PHP error_log
Read more →
Disclaimer: The research posted on this website is for information purposes only. Do not use it for illegal purposes.