1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Popular WordPress Plugin Comes with a Backdoor, Steals Site Admin Credentials

Discussion in 'BlackHat Lounge' started by youBobo, Mar 11, 2016.

Tags:
  1. youBobo

    youBobo Newbie

    Joined:
    Jan 26, 2016
    Messages:
    39
    Likes Received:
    19
    Occupation:
    Freelancer
    Location:
    Earth
    Security researchers have unmasked the wicked actions of a WordPress plugin that was installing a backdoor through which it was altering core WordPress files so it could log and steal user credentials from infected sites.

    Source:
    HTML:
    http://news.softpedia.com/news/popular-wordpress-plugin-comes-with-a-backdoor-steals-site-admin-credentials-501383.shtml
    I don't use this plugin. But someone else might and should be aware of this.
     
  2. back2basics

    back2basics Power Member

    Joined:
    Nov 11, 2012
    Messages:
    581
    Likes Received:
    382
    The plugin is Custom Content Type Manager. Save the clickbait titles for social media :)
     
    • Thanks Thanks x 2
  3. Debian

    Debian BANNED BANNED Jr. VIP Premium Member

    Joined:
    Feb 17, 2009
    Messages:
    1,263
    Likes Received:
    553
    The title caught my attention. :)