DayOfCrypto
  • Home
No Result
View All Result
DayOfCrypto
No Result
View All Result
DayOfCrypto
Home Other
wordpress-servers-are-being-targeted-by-new-cryptojacking-plugins

WordPress Servers Are Being Targeted by New Cryptojacking Plugins

by Admin
October 20, 2019
in Other
291 2
0
Share on FacebookShare on Twitter

WordPress plugins are typically used to provide webmasters with additional functionality for their websites. However, what they might not know is that some of these plugins may contain a hidden cryptocurrency mining exploit.

Researchers at website security and threat detection company Sucuri have detected several WordPress plugins that contain functions that are used to secretly mine cryptocurrency on affected machines.

Copy, Paste, Repeat

According to Sucuri researchers, these plugins take the guise of several popular WordPress plugins, cloning their features while adding functionality that allows the plugin to change permissions on the underlying server and execute Linux executable binary code using the eval function.

By doing this, the attacker is essentially able to secretly run code on the server, including a cryptocurrency miner binary file known as ‘Multios.Coinminer.Miner-6781728-2.’ Once the Multios crypto miner has been executed on the target system, it will then operate silently in the background, using up server resources to surreptitiously mine cryptocurrencies which are funneled back to the attacker.

By copying to code of popular pre-existing plugins and combining it with an already known crypto mining binary, the attacker is able to cover much more ground, producing potentially endless combinations of infected plugins and exploits. Because of this, infected machines could be used for much more than just cryptocurrency mining, such as mail spamming, DDoS and brute-force attacks.

Sucuri also found that this particular malicious plugin is a copy of version 1.16.16 of UpdraftPlus, a WordPress plugin used to simplify backups and restorations. Two commonly detected variants of the malicious plugin are known as ‘initiatorseo’ or ‘updrat123’.

Staying Safe

Unfortunately, simply removing the plugin typically does not resolve the attack, since only the original plugin installation files will be removed, leaving the nefarious binary code untouched. Instead, webmasters will need to ensure they perform regular server-side security scans to detect any unauthorized code and maintain proper control over access permissions.

WordPress users should ensure that they are running a capable web application firewall on their server, or can use Sucuri’s own ‘Sucuri Scanner’ WordPress plugin to help maintain the integrity of their server.

This now adds WordPress to the growing list of platforms that have been targeted by malicious parties looking to steal resources for the purposes of mining cryptocurrencies. Just days ago, BeInCrypto also reported that hackers have now turned to exploiting WAV files for deploying cryptojacking code—is there nowhere safe?

What do you think is the best way to deal with the rise in cryptojacking attempts? Let us know your thoughts in the comments below.


Images are courtesy of Shutterstock.

The post WordPress Servers Are Being Targeted by New Cryptojacking Plugins appeared first on BeInCrypto.

Admin

About Us

We bring you the best Premium WordPress Themes that perfect for news, magazine, personal blog, etc. Check our landing page for details.

Follow Us

Popular Tag

Adoption Banks Binance Binance Coin Bitcoin Bitcoin Cash Bitcoin Price Bitcoin Regulation Bitcoin SV Blockchain Central Bank China Coinbase Crimes Cryptocurrencies Cryptocurrency Exchange EOS Ethereum Ethereum Price Facebook Germany Government Investments Japan Law Libra Litecoin Markets Market Update Mining Payments Regulation Ripple SEC Security South Korea Stablecoin Stellar Switzerland Tokens Tradings Transactions USA Wallet XRP

Recent News

Poloniex Review – Buy and sell cryptocurrencies, Bitcoin, Registration, Safety, Reference

Poloniex Review – Buy and sell cryptocurrencies, Bitcoin, Registration, Safety, Reference

November 8, 2020
Bitstamp Review – Buy and sell Bitcoin and cryptocurrencies, Registration, Safety, Reference

Bitstamp Review – Buy and sell Bitcoin and cryptocurrencies, Registration, Safety, Reference

November 8, 2020
  • About
  • Advertise
  • Privacy & Policy
  • Contact

© 2021 JNews - Premium WordPress news & magazine theme by Jegtheme.

No Result
View All Result
  • Home

© 2021 JNews - Premium WordPress news & magazine theme by Jegtheme.

Welcome Back!

Login to your account below

Forgotten Password?

Create New Account!

Fill the forms below to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
Go to mobile version
Skip to toolbar
  • About WordPress
    • WordPress.org
    • Documentation
    • Support
    • Feedback
  • Log In
  • AMP
    • View AMP version