Security News > 2020 > June > Hackers Attempted to Steal Credentials From Millions of WordPress Websites
Over a period of just a few days in late May, malicious actors attempted to steal database credentials from millions of WordPress websites by exploiting known vulnerabilities in themes and plugins.
According to WordPress security company Defiant, its firewall blocked more than 130 million attempts to collect database credentials from 1.3 million sites between May 29 and May 31.
An analysis of the attack showed that exploitation attempts originated from more than 20,000 IP addresses, the same IPs that were behind another recent large-scale campaign that targeted 1.3 million WordPress websites protected by Defiant's Wordfence solution.
The more recent attack targeted nearly one million websites that were not targeted in the previous operation.
The company has published indicators of compromise and provided recommendations on how administrators can protect their WordPress websites against such attacks.
News URL
Related news
- Hackers Exploit Roundcube Webmail XSS Vulnerability to Steal Login Credentials (source)
- Hackers exploit Roundcube webmail flaw to steal email, credentials (source)
- WordPress forces user conf organizers to share social media credentials, arousing suspicions (source)
- Hackers steal 15,000 cloud credentials from exposed Git config files (source)
- LiteSpeed Cache WordPress plugin bug lets hackers get admin access (source)
- Microsoft: Chinese hackers use Quad7 botnet to steal credentials (source)
- Chinese hackers exploit Fortinet VPN zero-day to steal credentials (source)