WordPress Sites Backdoor by Hackers Exploiting Outdated Plugin

Malicious actors have been observed leveraging a legitimate but outdated WordPress plugin, Eval PHP, to gain backdoor access to websites.

Over 8,000 websites have installed this plugin, with a skyrocketing 23,110 downloads in the last seven days.

The attack chain entails installing the plugin and misusing it to establish persistent backdoors across multiple posts, which are sometimes saved as drafts.

Site owners are advised to secure the WP Admin dashboard and watch out for suspicious logins to prevent the plugin from being installed.

#shorts #techshorts #technews #tech #technology #Eval PHP #posts #conventional backdoor

👋 Feeling the vibes?

Keep the good energy going by checking out my Amazon affiliate link for some cool finds! 🛍️

If not, consider contributing to my caffeine supply at Buy Me a Coffee ☕️.

Your clicks = cosmic support for more awesome content! 🚀🌈