A naukri.com initiative
TechJuice
3w
302
Image Credit: TechJuice
Hacked by Ads? WordPress Sites Spreading Malware to Millions!
- WordPress malware is becoming a significant threat as hackers use legitimate ad networks to distribute malicious payloads.
- Research uncovered coordination between hacked WordPress sites and ad networks like Los Pollos and RichAds.
- The malware delivery mechanism impacts regular browsing experiences.
- Infoblox identified the VexTrio traffic distribution system used to redirect visitors to malware download pages.
- Infected WordPress sites display fake captchas that lead to push notification subscriptions.
- Users are exposed to scam links and drive-by downloads through push notifications.
- Ad networks such as Partners House and BroPush are central to VexTrio's operations.
- These networks profit by promoting gift card scams, phishing sites, and malware installers.
- Over 40 percent of hacked WordPress sites redirect users to malicious destinations through these networks.
- Adtech companies' vetting processes may expose hackers to detection by authorities.
- Site owners are advised to check for suspicious plugins, DNS entries, and JavaScript.
- Visitors should avoid interacting with suspicious pop-ups and captcha prompts requesting notification access.
- Strengthened endpoint security and partnership between adtech firms and cybersecurity experts are recommended to combat WordPress malware.
- The post was published on TechJuice.
- The news article qualifies for web story generation due to its relevance and potential for user engagement.
Read Full Article
18 Likes
For uninterrupted reading, download the app