|17 Apr 2014||#1|
WordPress vulnerability puts mobile visitors at risk
Today one of our colleagues came into our office and said, “Hey guys, I’ve been infected.” I thought to myself, yeah, how bad can this be? After a bit of digging we found the results were worth it; it turned out to be a really “interesting ” case of mobile redirected threats localized for each country.
All you need is one bad IP
The case was brought to us by Jakub Carda, a fellow AVAST employee who enjoys blogging in his free time. His WordPress site was compromised through a vulnerability in WordPress, more precisely OptimizePress. OptimizePress is a WordPress plugin that fully integrates itself into the WordPress CMS, helping bloggers optimize their blog’s design. A tiny mistake in the code of a file located in: lib/admin/media-upload.php made it possible for pretty much anyone to upload harmful content onto people’s WordPress sites, and plenty of websites have been compromised because of this.
|My System Specs|
|Similar help and support threads for2: WordPress vulnerability puts mobile visitors at risk|
|UPnP networking flaw puts millions of PCs at risk||Security News|
|Another critical Java vulnerability puts 1 billion users at risk||Security News|
|Flash flaw puts most sites, users at risk........||News|
|Satellite Collision Puts Hubble at Risk||Chillout Room|
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.
© Designer Media Ltd
All times are GMT -5. The time now is 11:35 PM.