Google Bans Over 11,000 Domains Following Malware Infection on WordPress Sites

Google has banned over 11,000 domains marking them malevolent ever-since malicious software hijacked websites reliant on content management pertaining to WordPress, thus reported ZDNet.com dated 16th December 2014.

Sucuri, a website security firm says, the malware run known as SoakSoak derived from the utilization of the foremost site within soaksoak.ru the malware diversion route apparently hijacked 100,000-or-more WordPress websites.

Sucuri that, during December 2014 2nd-weekend, revealed about the malware run, substantiated on 15th same month that the medium of the assault was RevSlider a particular plugin related to WordPress.

The plugin had a critical security flaw and this was notified to the firm during September 2014 early part. By exploiting the flaw, attackers could take down any file such as sensitive credentials of database stuff through access of the associated infected website. Often there's a direct connection between the plugin's volatility and the manner whereby it's bundled inside theme packages. The default upgrading action of RevSlider is normally deactivated whilst it arrives bundled into a theme, thus making the webmaster solely responsible for upgrading it accordingly.

CTO Daniel Cid at Sucuri states that numerous end-users aren't even aware of the plugin's existence on their computers since it arrives wrapped into themes, which explains the reason plentiful websites aren't yet patched. Threatpost.com reported this, December 15, 2014.

Over 70m websites exist which are hosted on WordPress, with RevSlider as a very popular plugin for this content management protocol; consequently, it can't be said exactly what number or type of websites may've got attacked with the malware.

A contaminated site that resolved the problem was gaming website Dulfy when it eliminated the code while resorting to firewall, however, blogs may continue to have the problem indefinitely owing to inefficient administrators. Meanwhile, Dulfy's administrator is not certain the problem won't reappear.

According to Kristina Hunter owner of Dulfy, the firewall is merely one tentative solution. Gizmodo.com published this, December 16, 2014.

Giving suggestions aiding in the infection's removal, Cid said operators required beginning to deploy website firewalls for tackling the current or similar other problems since default operations of things posed considerable challenges to routine end-users for keeping up.

» SPAMfighter News - 12/24/2014