![]() We’re currently remediating thousands of sites and when engaging with our clients many had no idea the plugin was even within their environment.”Ĭid added that even when website owners try to clean the two affected files in their WordPress installation, they may be swiftly reinfected. “Some website owners don’t even know they have it as it’s been packaged and bundled into their themes. “The biggest issue is that the RevSlider plugin is a premium plugin, it’s not something everyone can easily upgrade and that in itself becomes a disaster for website owner,” wrote Sucuri’s Daniel Cid. Sucuri claimed that SoakSoak is using a vulnerability in the RevSlider WordPress plugin that it first spotted in September, but which is often used within WordPress themes, meaning website owners may not have known they needed to update it. SoakSoak modifies a file in infected sites’ WordPress installation, then loads a Javascript malware from the domain – hence the name.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |