Over 10,000 WordPress Sites Compromised to Distribute Malware
/ 1 min read
💻🔍 Over 10,000 WordPress sites compromised to distribute malware targeting macOS and Windows. A recent report by c/side reveals a sophisticated attack campaign that exploits outdated WordPress versions and plugins to deliver AMOS (Atomic macOS Stealer) and SocGholish malware through fake Google browser update pages. The attack utilizes client-side vulnerabilities, making detection challenging for websites lacking monitoring tools. Visitors to compromised sites are shown a convincing fake update page, prompting them to download malicious files tailored to their operating systems. The attackers operate a network of 27 malicious domains, with the primary domain hosting obfuscated JavaScript payloads. Website owners are urged to update their WordPress installations and plugins, review logs for suspicious activity, and consider implementing security monitoring tools to protect against these threats.
