Over 10,000 WordPress sites found showing fake Google browser update pages to spread malware

Researchers discover 10,000 compromised WordPress sites
The sites were embedded with malicious JavaScript code
The goal was to deliver infostealers to victims

Ten thousand WordPress websites were being used to deliver infostealing malware to victims running both Windows and macOS devices, experts have warned.

A report from cybersecurity researchers at c/side claims a threat actor likely compromised different WordPress sites using an older version of the platform (6.7.1) and with it – an older, outdated plugin. Once the sites are breached, the attackers would deploy malicious JavaScript code, which would generate a fake page in an iframe, to the visitors.

When a victim visits one of these sites, they would see an overlaid page stating they need to update their browser if they want to view the contents of the page. However, instead of downloading a patch, the victims would get either Atomic (AKA AMOS, a popular infostealer for macOS), or SocGholish (basically the same thing, just for Windows).

Stealing sensitive files

These infostealers would grab all sorts of sensitive information from the target endpoint – from passwords stored in the browser, to session cookies, cryptocurrency wallet information, and other potentially sensitive files.

Defending against these attacks requires web administrators to keep their sites up to date.

The WordPress website builder platform, for starters, should be upgraded to version 6.7, released in mid-November, 2024. The admins should then go through all the themes and plugins they have installed, and remove all the ones they’re not using. The remaining ones should then be updated, as well.

Finally, admins should look for malicious scripts and delete them. C/side claims that attackers leave a backdoor most of the time, to be able to easily return, if need be. If they do find traces of compromise, they should also review logs from the last 90 days to identify what kind of malicious activity was done.

https://cdn.mos.cms.futurecdn.net/4dB7zyRNSR7f8BCMoB3JqQ-1200-80.jpg

Source link

‘A guy who was not an expert…used ChatGPT to make a custom mRNA vaccine for his dog’s cancer’, and other incredible tales from Sam...

Lowe’s just launched a massive spring sale — here’s everything I’d buy for my backyard, including furniture, plants, grills, and more

‘Copilot is for entertainment purposes only’: Even Microsoft’s official terms and conditions say you really shouldn’t be using its AI at work

CorelDRAW Graphics Suite 2026 review

Ex-Israeli Intelligence Official: Shockwaves of Trump’s “Take Over Gaza” Heard, Felt Across Region

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

Jaz Sinclair on The Boys Season 5, Gen V Season 3, New Music

‘Hacks’ Star Hannah Einbinder Blasts AI Creators as ‘Losers’

Season 22 FDA Investigation into Miranda Bailey Explained

Celebrities With Ties to Montclair, NJ

Energy markets are having a Wile E. Coyote moment as oil supplies go off a cliff, expert says

Stronger, broader hiring could ease Fed job market worries

Energy markets are having a Wile E. Coyote moment as oil supplies go off a cliff, expert says

Form 8K CFCRE 2016-C6 Mortgage Trust For: 3 April

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays

Over 10,000 WordPress sites found showing fake Google browser update pages to spread malware

Energy markets are having a Wile E. Coyote moment as oil supplies go off a cliff, expert says

Jaz Sinclair on The Boys Season 5, Gen V Season 3, New Music

Stronger, broader hiring could ease Fed job market worries

‘A guy who was not an expert…used ChatGPT to make a custom mRNA vaccine for his dog’s cancer’, and other incredible tales from Sam...