Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Stealthy PHP Malware Uses ZIP Archive to Redirect WordPress Visitors
Malware and Vulnerabilities
July 14, 2025
sucuri
A new stealthy PHP malware campaign has been discovered targeting WordPress websites. The malware leverages the `zip://` PHP wrapper to include obfuscated malicious code from a ZIP archive embedded in the WordPress core file `wp-settings.php`.
Read More
PHP Malware
WordPress
Publisher
Previous
Exploits for pre-auth Fortinet FortiWeb RCE flaw releas ...
Malware and Vulnerabilities
Next
Over 600 Laravel Apps Exposed to Remote Code Execution ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/public_image/bleepingcomputer40afb3c8-c238-4cb2-b471-9631f209d8dd.jpg)
/https://cyware-ent.s3.amazonaws.com/public_image/thehackernews41076b62-009e-4e96-8f1d-9a3755ed4923.jpg)
