Diamond Member ThaHaka 0 Posted June 15 Diamond Member Share Posted June 15 This is the hidden content, please Sign In or Sign Up An attacker tampered with trusted JavaScript files used by WordPress sites running PushEngage, OptinMonster, and TrustPulse, turning those files into a way to break into the sites. When a site administrator was logged in as the file loaded, the code created an admin account under the attacker's control and installed a hidden plugin that opened a way back in. Ordinary visitors did not trigger it This is the hidden content, please Sign In or Sign Up 0 Quote Link to comment https://hopzone.eu/forums/topic/317823-h4ckn3wspopular-wordpress-plugin-scripts-tampered-to-plant-hidden-backdoors-on-sites/ Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.