Over 1,000 WordPress Sites Infected with JavaScript Backdoors Enabling Persistent Attacker Access

ByXel

Mar 20, 2025

Over 1,000 websites powered by WordPress have been infected with a third-party JavaScript code that injects four separate backdoors.
“Creating four backdoors facilitates the attackers having multiple points of re-entry should one be detected and removed,” c/side researcher Himanshu Anand said in a Wednesday analysis.
The malicious JavaScript code has been found to be served via cdn.csyndication[

By Xel

Cyber News

‘SessionShark’ ToolKit Evades Microsoft Office 365 MFA

Apr 28, 2025 Xel

Cyber News

OttoKit WordPress Plugin Admin Creation Vulnerability Under Active Exploitation

Apr 11, 2025 Xel

Cyber News

Over 1,500 PostgreSQL Servers Compromised in Fileless Cryptocurrency Mining Campaign

Apr 5, 2025 Xel

Over 1,000 WordPress Sites Infected with JavaScript Backdoors Enabling Persistent Attacker Access

ByXel

Related

By Xel

Related Post

‘SessionShark’ ToolKit Evades Microsoft Office 365 MFA

OttoKit WordPress Plugin Admin Creation Vulnerability Under Active Exploitation

Over 1,500 PostgreSQL Servers Compromised in Fileless Cryptocurrency Mining Campaign

Let us know what you think about this article.Cancel reply

You missed

‘SessionShark’ ToolKit Evades Microsoft Office 365 MFA

The People Factor: Why Employees is the Biggest Challenge for Organisations

Passkeys Explained: The Future of Authentication and Secure Access

OttoKit WordPress Plugin Admin Creation Vulnerability Under Active Exploitation

ByXel

Share this:

Related

By Xel

Related Post

Let us know what you think about this article.Cancel reply

You missed