Renamed wp-config.php => Sensitive Data Exposure

Renamed wp-config.php => Sensitive Data Exposure
Attackers continue to find easy victims by crawling websites using enumeration techniques and looking for configuration files that have had their file extension modified.
Read more →

Affiliate Referral Abuse & JavaScript Injection

Affiliate Referral Abuse & JavaScript Injection
Hackers use JavaScript injections to redirect visitors to specific websites to collect affiliate referrals.
Read more →

Mass WP Infection: trainresistor.cc

Mass WP Infection: trainresistor.cc
A large attack campaign that has been targeting vulnerable WordPress websites and using JavaScript injections to redirect victims to scams or malicious URLs.
Read more →

.wtf() Skimmer Still Targeting WooCommerce Websites

.wtf() Skimmer Still Targeting WooCommerce Websites
Almost identical to the one from back in March 2021 except this uses convert-server.com as the exfiltration domain.
Read more →

WordPress Injection Exfiltrates Admin Login

WordPress Injection Exfiltrates Admin Login
wp-login.php injection silently exfiltrates a victim’s username and password back to the attacker’s server.
Read more →
Disclaimer: The research posted on this website is for information purposes only. Do not use it for illegal purposes.