Cybersecurity

Users Targeted on WordPress by Malware Attacks 

  • Reading time: 2 min
Belgian security firm C/side warned that cyber criminals are targeting outdated WordPress versions and plugins

On Wednesday, Belgian security firm C/side warned that cyber criminals are targeting outdated WordPress versions and plugins to hijack thousands of websites, tricking visitors into downloading and WordPress malware. 

The malware on WordPress website has already targeted thousands of websites, including prominent internet websites. Attackers injected the malware on WordPress system capable of stealing passwords, session cookies, and personal information and data. 

CEO of web security firm C/side, Simon Wijckmans, addressed how the hacking operation is still ongoing, and malicious actors are attacking both Windows and Mac users through WordPress.  

WordPress Malware Attack Logistics 

What happens is that the malware plugin on WordPress quickly changes content, once user visits the websites, to show a fake chrome update prompt. The page forces users to download and install an update to keep viewing the site. When the user agrees to install the update, the malicious software starts working, without them knowing what they have been put into.  

According to c/side’s research, the malware on WordPress site payload varies depending on the operating system of the visitor.  

For example, Windows users are attacked with SocGholish malware, while macOS users are affected by the Amos malware. 

The aftermath of the WordPress malware attack is huge, c/side recognized over 10,000 attacked websites. The attacked websites are those with high-traffic domains, which means a huge number of visitors are most willingly to be at risk.  

The malware on WordPress site is labeled as “spray and pay” attack, which means the purpose is to compromise as many victims as possible, rather than focusing on a specific target.  

Suck cyber-attacks are dangerous because they steal valuable data from users, such as private information, the usernames, passwords, and even cryptocurrency wallet data.  

WordPress Malware Protection 

Such types of malware attacks are very concerning, however, some arrangements to protect users can be made. Updating software through official channels can be helpful, this would avoid downloading updates from untrusted websites.  

In addition, regular updates of web browsers like Chrome are also important to protect user data. Users should have full awareness of installing applications from trusted sources. 

WordPress acknowledged the issue but has not provided any information about the attack. C/side firm researchers keep on trying to eliminate the spread of these attacks. 

Users should always check WordPress for malware existence. The hacking attack is not the first, in 2024, a password-stealing malware occurred, and it was huge. Breaches like the WordPress malware attack highlight the need for strong security measures and regular updates to both software and user credentials.  

Inside Telecom provides you with an extensive list of content covering all aspects of the tech industry. Keep an eye on our Cybersecuritysections to stay informed and up-to-date with our daily articles.

Tags: