BEAMSTART Logo

Backdoor slipped into multiple WordPress plugins in ongoing supply-chain attack

Ars Technica LogoArs Technica1w ago

Backdoor slipped into multiple WordPress plugins in ongoing supply-chain attack - Ars Technica

Quick Summary:

Malicious updates available from WordPress.org create attacker-controlled admin account.

The updates also add content designed to goose search results.“The injected malicious code is not very sophisticated or heavily obfuscated and contains comments throughout making it easy to follow,” the researchers wrote.“The earliest injection appears to date back to June 21st, 2024, and the threat actor was still actively making updates to plugins as recently as 5 hours ago.

When installed, the updates automatically create an attacker-controlled administrative account that provides full control over the compromised site.

More Pictures

Backdoor slipped into multiple WordPress plugins in ongoing supply-chain attack - Ars Technica (Picture 1)

or

Article Details

Author / Journalist: Dan Goodin

Category: Technology

Markets:

Topics:

Source Website Secure: Yes (HTTPS)

News Sentiment: Neutral

Fact Checked: Legitimate

Article Type: News Report

Published On: 2024-06-24 @ 21:00:43 (1 weeks ago)

News Timezone: GMT -5:00

News Source URL: arstechnica.com

Language: English

Article Length: 161 words

Reading Time: 1 minutes read

Sentences: 36 lines

Sentence Length: 5 words per sentence (average)

Platforms: Desktop Web, Mobile Web, iOS App, Android App

Copyright Owner: © Ars Technica

News ID: 21374886

View Article Analysis

About Ars Technica

Ars Technica Logo

Main Topics: Technology

Official Website: arstechnica.com

Update Frequency: 5 posts per day

Year Established: 1998

Headquarters: United States

News Last Updated: 10 hours ago

Coverage Areas: United States

Ownership: Independent Company

Publication Timezone: GMT -5:00

Content Availability: Worldwide

News Language: English

RSS Feed: Available (XML)

API Access: Available (JSON, REST)

Website Security: Secure (HTTPS)

Publisher ID: #32

Publisher Details

Frequently Asked Questions

How long will it take to read this news story?

The story "Backdoor slipped into multiple WordPress plugins in ongoing supply-chain attack" has 161 words across 36 sentences, which will take approximately 1 - 2 minutes for the average person to read.

Which news outlet covered this story?

The story "Backdoor slipped into multiple WordPress plugins in ongoing supply-chain attack" was covered 1 weeks ago by Ars Technica, a news publisher based in United States.

How trustworthy is 'Ars Technica' news outlet?

Ars Technica is a fully independent (privately-owned) news outlet established in 1998 that covers mostly technology news.

The outlet is headquartered in United States and publishes an average of 5 news stories per day.

It's most recent story was published 10 hours ago.

What do people currently think of this news story?

The sentiment for this story is currently Neutral, indicating that people are not responding positively or negatively to this news.

How do I report this news for inaccuracy?

You can report an inaccurate news publication to us via our contact page. Please also include the news #ID number and the URL to this story.
  • News ID: #21374886
  • URL: https://beamstart.com/news/backdoor-slipped-into-multiple-wordpress-171926825

More News from Ars Technica

Latest Jobs

More Technology News

BEAMSTART

BEAMSTART is a global entrepreneurship community, serving as a catalyst for innovation and collaboration. With a mission to empower entrepreneurs, we offer exclusive deals with savings totaling over $1,000,000, curated news, events, and a vast investor database. Through our portal, we aim to foster a supportive ecosystem where like-minded individuals can connect and create opportunities for growth and success.

Our Company

© Copyright 2024 BEAMSTART. All Rights Reserved.