Backdoor in Captcha Plugin Affects 300K WordPress Sites

WordPress Training

WordPress Training

This code triggers an automatic update process that downloads a ZIP file from https://simplywordpress[dot]net/captcha/captcha_pro_update.php, then extracts and installs itself over the copy of the Captcha plugin running on site. The ZIP contains a few small code changes from what is in the plugin repository, and it also contains a file called plugin-update.php, which is a backdoor. A backdoor file allows an attacker, or in this case, a plugin author, to gain unauthorized administrative access to your website.

Source: WordFence

Leave a Reply

BOOK A COMPLIMENTARY CONSULTATION

1 (800) 579-9253

Twitter Facebook LinkedIn Instagram Contact Us
©2019 Sue Sutcliffe. All rights reserved. Privacy
Sue serves the Greater Toronto Area (GTA) including; Durham Region (Ajax, Brock, Clarington, Oshawa, Pickering, Scugog, Uxbridge, Whitby), Halton Region (Burlington, Halton Hills, Milton, Oakville), Peel Region (Brampton, Caledon, Mississauga), and York Region (Aurora, East Gwillimbury, Georgina, King, Markham, Newmarket, Richmond Hill, Vaughan, Whitchurch–Stouffville) from her home office in Scarborough.