Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Infected WordPress Plugins Redirect to Push Notification Scam
Identity Theft, Fraud, Scams
December 07, 2022
Sucuri
Instead of leveraging the typical base64 encoding to evade detection, the attacker was adding variations of a PHP function to normal plugin files which decoded hex2dec from a second file containing a hexadecimal payload.
Read More
WordPress Plugins
Wordpress Sites
Obfuscation Techniques
PHP Functions
hex2dec
Publisher
Previous
Elon Musk's Twitter followers targeted in fake crypto g ...
Identity Theft, Fraud, Scams
Next
Maryland bans use of TikTok, other products by state ag ...
Govt., Critical Infrastructure
/https://cyware-ent.s3.amazonaws.com/image_bank/21c4_shutterstock_368190689.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/4fe3_shutterstock_1447943597.jpg)
