On 1st of July 2021 we are doing our routine security check on our client website. And as we continue do the full scanning on the site, we found that just like previous post here. We found another php files implanted within a wordpress css core folder at “/wp-admin/css/colors/blue/nys.php”. According to our experience with wordpress,… Read More »
On 30th of June 2021 we are doing our routine security check on our client website. And as we continue do the full scanning on the site, we found that almost all .js script in the plugin installed has been injected by unknown malicious code. And through it, we found out that it seems that… Read More »
Today on 2nd of May 2021 we have found out that one of our client websites has been displaying malicious behaviour. The details can be read here. And as we continue do the full scanning on the site, we found out that index.php and .htaccess has been modified by the attackers. For comparison between the… Read More »
On 2nd May 2021 around 7AM we found out that one of client website showing suspicious behaviour such as high number of server resource usage and high number of error log. Upon inspection we found out that the site has been hijacked through plugin vulneribility stated here: https://wpscan.com/vulnerability/c311feef-7041-4c21-9525-132b9bd32f89 Through it we able to confirmed that a… Read More »