Hackers exploit critical vulnerability found in 100,000 WordPress sites

Hackers exploit critical vulnerability found in 100,000 WordPress sites

by Dan Goodin, ARS Technica – 

Flaw in ThemeGrill plugin lets attackers wipe sites clean and possibly take them over.

Hackers are actively exploiting a critical WordPress plugin vulnerability that allows them to completely wipe all website databases and, in some cases, seize complete control of affected sites.

The flaw is in the ThemeGrill Demo Importer installed on some 100,000 sites, and it was disclosed over the weekend by Website security company WebARX. By Tuesday, WebArx reported that the flaw was under active exploit with almost 17,000 attacks blocked so far. Hanno Böck, a journalist who works for Golem.de, also spotted active attacks and reported them on Twitter.

Read the full article here…

How did you like this post?

Click on a star to rate it!

Average rating 0 / 5. Vote count: 0

No votes so far! Be the first to rate this post.

SHARE THIS PAGE OR POST

Leave a Reply