• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
thousands of wordpress sites hacked to redirect visitors to scam

Thousands of WordPress Sites Hacked to Redirect Visitors to Scam Sites

You are here: Home / General Cyber Security News / Thousands of WordPress Sites Hacked to Redirect Visitors to Scam Sites
May 12, 2022

Cybersecurity researchers have disclosed a enormous marketing campaign which is accountable for injecting malicious JavaScript code into compromised WordPress web sites that redirects visitors to rip-off internet pages and other malicious web sites to crank out illegitimate site visitors.

“The sites all shared a typical issue — destructive JavaScript experienced been injected within just their website’s files and the database, which includes genuine core WordPress files,” Krasimir Konov, a malware analyst at Sucuri, said in a report posted Wednesday.

This involved infecting data files these types of as jquery.min.js and jquery-migrate.min.js with obfuscated JavaScript that is activated on every web site load, enabling the attacker to redirect the site website visitors to a destination of their selection.

✔ Approved From Our Partners
AOMEI Backupper Lifetime

Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.

Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


The GoDaddy-owned website security corporation explained that the domains at the conclusion of the redirect chain could be employed to load ads, phishing pages, malware, or even bring about an additional established of redirects.

In some occasions, unsuspecting consumers are taken to a rogue redirect landing webpage made up of a phony CAPTCHA test, clicking which serves unwanted advertisements that are disguised to look as if they come from the operating procedure and not from a web browser.

The marketing campaign — a continuation of an additional wave that was detected very last thirty day period — is considered to have impacted 322 sites so far, starting off May well 9. The April set of attacks, on the other hand, has breached above 6,500 websites.

“It has been identified that attackers are targeting various vulnerabilities in WordPress plugins and themes to compromise the internet site and inject their malicious scripts,” Konov claimed.

Observed this article attention-grabbing? Adhere to THN on Fb, Twitter  and LinkedIn to study a lot more distinctive content material we put up.


Some parts of this write-up are sourced from:
thehackernews.com

Previous Post: «panda free antivirus review: a free security tool with a Panda Free Antivirus review: A free security tool with a personality all of its own
Next Post: Novel ‘Nerbian’ Trojan Uses Advanced Anti-Detection Tricks novel ‘nerbian’ trojan uses advanced anti detection tricks»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • New Variant of Banking Trojan BBTok Targets Over 40 Latin American Banks
  • How to Interpret the 2023 MITRE ATT&CK Evaluation Results
  • Iranian Nation-State Actor OilRig Targets Israeli Organizations
  • High-Severity Flaws Uncovered in Atlassian Products and ISC BIND Server
  • Apple Rushes to Patch 3 New Zero-Day Flaws: iOS, macOS, Safari, and More Vulnerable
  • Mysterious ‘Sandman’ Threat Actor Targets Telecom Providers Across Three Continents
  • Researchers Raise Red Flag on P2PInfect Malware with 600x Activity Surge
  • The Rise of the Malicious App
  • China Accuses U.S. of Decade-Long Cyber Espionage Campaign Against Huawei Servers
  • Cyber Group ‘Gold Melody’ Selling Compromised Access to Ransomware Attackers

Copyright © TheCyberSecurity.News, All Rights Reserved.