Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Fake WordPress Security Advisory Pushes Backdoor Plugin
Malware and Vulnerabilities
December 05, 2023
Bleeping Computer
The fake plugin, once installed, creates a hidden admin user and sends victim information to the attackers, while also downloading a backdoor payload that allows for file management, SQL client, and server environment information access.
Read More
Fake Security Advisory
Malicious Plugin
Backdoor Access
Phishing campaign
Remote Code Execution (RCE)
Publisher
Previous
Hershey phishes! Crooks snarf chocolate lovers' creds
Breaches and Incidents
Next
December Android Updates Fix Critical Zero-Click RCE Fl ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/d474_shutterstock_2320746337.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/7e68_shutterstock_1625299735.jpg)
