Malware attack infects more than 100,000 web sites

Malware attack infects more than 100,000 web sites

A new online malware attack has claimed more than 100,000 web sites since this past Sunday and the number keeps on growing, a report from the online security firm Sucuri says.

The origin of the malware is Russia and all affected web sites run WordPress. The attack so far has prompted Google to blacklist more than 11,000 of the affected domains. The malware does its evil deeds through a previously known vulnerability in a WordPress plug-in called Slider Revolution and modifies the wp-includes/template-loader.php file, causing the wp-includes/js/swobject.js file to be loaded on every page on the site, which in turn loads the malware from a Russian website.

Not everyone is affected but if you run WordPress via Internet Explorer you might become a victim. In addition to that the yet unnamed malicious software makes use of a number of new backdoor payloads, some of which get injected into images to further assist evasion while others are being used to inject new administrator users into vulnerable WordPress installs. Unfortunately the malware is not easy to stop or remove – if you delete the aforementioned files this will not address the leftover backdoors and initial entry points. The only way to get rid of the malware is to make sure that the Slider Revolution plug-in is up to date but this is not easy – some web sites do not even know that they have the plug-in.

In the meantime you can find out if your web site is affected here – just use Sucuri’s free site scanner.

Source: Techspot.com

Related posts

GELID debuts Polar 1U low profile CPU cooler

GELID debuts Polar 1U low profile CPU cooler

GELID Solutions has announced a new CPU cooler called Polar 1U. Designed for HTPCs, panel PCs, car PCs and 1U servers, the Polar 1U features a low profile and offers a heat sink with a height of just 27 mm, which means it will fit in most slim low profile cases, not to mention you won’t have...

Gigabyte presents Z87 motherboard

Following ASRock the Taiwanese Gigabyte Technology has presented its first high-end LGA1150 motherboard at the just finished CeBIT 2013 in Germany. The Gigabyte GA-Z87X-OC is a high-end Z87-based motherboard desighed for overclockers. The board comes with an 8-phase VRM...

Microsoft preps Halo 4 Limited Edition Xbox 360

The fourth instalment of the successful Halo game series is right around the corner and this is one of the reasons Microsoft is currently working on a special edition Xbox 360 gaming console that will be dedicated to Halo 4. Called Halo 4 Limited Edition Xbox 360 the new old gaming...

Leave a comment