Hackers secretly planted a remote code-execution backdoor in more than 30 popular WordPress plugins, leaving it dormant for about 8 months before activating malware that rewrote wp-config.php and injected cloaked SEO spam at scale. The incident centers on “Essential Plugin,” a portfolio of 30+ free plugins with paid upgrades used for sliders, countdown timers, FAQs, […]

The post Trusted WordPress Plugins Hijacked in 8-Month Stealth Backdoor Campaign appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Mayura Kathir

Source: gbHackers
Source Link: https://gbhackers.com/trusted-wordpress-plugins/