Balada Injector Infects Over 7,100 WordPress Sites Using Plugin Vulnerability

Updated on January 15, 2024

Thousands of WordPress sites using a vulnerable version of the Popup Builder plugin have been compromised with a malware called Balada Injector.
First documented by Doctor Web in January 2023, the campaign takes place in a series of periodic attack waves, weaponizing security flaws WordPress plugins to inject backdoor designed to redirect visitors of infected sites to bogus tech…

Read the rest of the story at Read More

Source: The Hacker News

October 15, 2024 Uncategorized

TrickMo Banking Trojan Can Now Capture A...

December 18, 2023 Uncategorized

Unmasking the Dark Side of Low-Code/No-C...

October 22, 2024 Uncategorized

Balada Injector Infects Over 7,100 WordPress Sites Using Plugin Vulnerability

Related posts

TrickMo Banking Trojan Can Now Capture A...

Unmasking the Dark Side of Low-Code/No-C...

Cybercriminals Exploiting Docker API Ser...

Leave a Comment Cancel reply

Recent News

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

Perfection is a Myth. Leverage Isn’t: How Small Teams Can Secure Their Google Workspace

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

How to Automate CVE and Vulnerability Advisory Response with Tines

MintsLoader Drops GhostWeaver via Phishing, ClickFix — Uses DGA, TLS for Stealth Attacks

Microsoft Sets Passkeys Default for New Accounts; 15 Billion Users Gain Passwordless Support