SoakSoak Botnet Pushing Neutrino Exploit Kit and CryptXXX Ransomware

Researchers are reporting a surge in CryptXXX ransomware infections delivered via business websites compromised to redirect to the Neutrino Exploit Kit. Attackers are targeting websites running the Revslider slideshow plugin for WordPress, according to a report released Tuesday by Invincea. Behin...

WordPress Revslider 插件任意文件上传漏洞与任意文件下载漏洞 (SoakSoak)

漏洞描述 据报道，此次SoakSoak恶意软件在大量WordPress站点中的爆发源于一款名为Revslider的幻灯片插件，该插件曾被爆多个安全漏洞，涉及任意文件下载、任意文件上传等。Revslider由ThemePunch出品，属于一款商业性插件（收费），因其具有强大的功能和良好的易用性而有着不错的销量，并且在ThemePunch出品的一些WordPress主题中也自带有该款插件。...

Backdoors Found Leveraging Pastebin

The cut and paste website Pastebin is perhaps best known as a conduit for attackers to share database dumps, stolen data and other code, but now hackers have begun leveraging the site for their actual attacks. Instead of relying on compromised sites to host malware, hackers are using Pastebin to...

SoakSoak Malware Campaign Evolves

The attackers behind the SoakSoak malware campaign are continuing to modify their tactics and have infected a new group of Web sites. The Javascript code that the attackers target with the malware has also changed. Last week, Google took the step of blacklisting thousands of sites that had been...

Google Blacklists Sites Peddling SoakSoak Malware

UPDATE Google blacklisted more than 10,000 different websites over the weekend that it spotted doling out SoakSoak malware, but experts claim the number of impacted sites may ultimately be ten times that figure. Up to 100,000 sites hosted on WordPress may be vulnerable to a campaign known as...

'SoakSoak' Malware Compromises 100,000 WordPress Websites

The users of WordPress, a free and open source blogging tool as well as content management system CMS, are being informed of a widespread malware attack campaign that has already compromised more than 100,000 websites worldwide and still counting. The news broke throughout the WordPress community...