WordPress Injection Exfiltrates Admin Login

WordPress Injection Exfiltrates Admin Login
wp-login.php injection silently exfiltrates a victim’s username and password back to the attacker’s server.
Read more →

Malware Disables Wordfence Security Plugin & Forges Timestamps

Malware Disables Wordfence Security Plugin & Forges Timestamps
A malicious PHP file is used to take down Wordfence plugin before it adjusts its own mtime timestamp.
Read more →

PHP Injector Makes Evil Use of error_log

PHP Injector Makes Evil Use of error_log
A PHP backdoor that injects its payload into the default PHP error_log
Read more →

WordPress Comment Activates Backdoor Via SQL Trigger

WordPress Comment Activates Backdoor Via SQL Trigger
Attackers are using SQL triggers as a backdoor to create a malicious admin user whenever a special comment is submitted to an infected WordPress website.
Read more →

ALFA TEaM v4.1 Web Shell New Features

ALFA TEaM v4.1 Web Shell New Features
A new PHP web shell by ALFA TEaM that has some interesting new features like the ability to create a cPanel phishing page that blocks the victim from a part of their website until they interact with the phishing page.
Read more →
Disclaimer: The research posted on this website is for information purposes only. Do not use it for illegal purposes.