Skip to main content

Wordpress

Thousands of WordPress sites sucked into BlackHole

posted onNovember 2, 2011
by l33tdawg

Researchers have discovered a spike in malware infecting thousands of WordPress websites that use a popular image tool.

The attacks came to light after French media outlet, The Poitou-Charentes Journal, began hosting on malicious code on its WordPress site. Avast senior researcher Jan Sirmer found attackers had exploited weak FTP server authentication credentials and a vulnerability in the TimThumb image resizer to upload malicious PHP files to the site.

Simplenews subscription

Stay informed - subscribe to our newsletter.
The subscriber's email address.
Keeping Knowledge Free for Over a Decade

Copyright © 2018 Hack In The Box. All rights reserved.

36th Floor, Menara Maxis, Kuala Lumpur City Centre 50088 Kuala Lumpur Malaysia
Tel: +603-2615-7299 Fax: +603-2615-0088