News Post

WordPress websites are being hacked to hijack your browser — and then attack other sites

Techradar

· 3m
placeholder-image

Cybercriminals are utilizing compromised WordPress websites to create a vast network for credential stuffing attacks, according to security researchers. The attackers are seeking vulnerable sites to insert a script into their HTML templates, which forces visitors to unknowingly attempt to log in to different WordPress sites using various combinations of usernames and passwords. Once a successful login is achieved, the victim is used to relay the information back to the attackers and receive further instructions. The attackers previously used this technique to install malware, but have now shifted to building a larger base for more destructive attacks.

View Source
No Comments yet

More Like this

Web apps and APIs were attacked more than ever last year

Web apps and APIs were attacked more than ever last year

How DDoSers used the HTTP/2 protocol to deliver attacks of unprecedented size

How DDoSers used the HTTP/2 protocol to deliver attacks of unprecedented size

Thousands of servers hacked in ongoing attack targeting Ray AI framework

Thousands of servers hacked in ongoing attack targeting Ray AI framework

Discord took no action against server that coordinated costly Mastodon spam attacks | TechCrunch

Discord took no action against server that coordinated costly Mastodon spam attacks | TechCrunch

Cyber attack compromised Indonesia data centre, ransom sought, reports Antara

Cyber attack compromised Indonesia data centre, ransom sought, reports Antara

SMBs are being hit with more malware attacks than ever, and many can't keep up

SMBs are being hit with more malware attacks than ever, and many can't keep up

Apple users targeted in phishing attack: How to protect your iPhone

Apple users targeted in phishing attack: How to protect your iPhone

China's biggest lender's US arm hit by ransomware attack

China's biggest lender's US arm hit by ransomware attack

Attack wrangles thousands of web users into a password-cracking botnet

Attack wrangles thousands of web users into a password-cracking botnet

Apple alerts users in 92 nations to mercenary attacks in new warning

Apple alerts users in 92 nations to mercenary attacks in new warning

Download the medial app to read full posts, comements and news.