Security News > 2023 > October > New WordPress backdoor creates rogue admin to hijack websites
A new malware has been posing as a legitimate caching plugin to target WordPress sites, allowing threat actors to create an administrator account and control the site's activity.
The malware is a backdoor with a variety of functions that let it manage plugins and hide itself from active ones on the compromised websites, replace content, or redirect certain users to malicious locations.
Plugin control - The malware operators can remotely activate or deactivate arbitrary WordPress plugins on the compromised site.
At the moment, Defiant does not provide any details about the number of websites compromised with the new malware and its researchers have yet to determine the initial access vector.
Jupiter X Core WordPress plugin could let hackers hijack sites.
Hackers backdoor telecom providers with new HTTPSnoop malware.