Attack of the WordPress worm – SQL Injection

Just about every single entity involved in computing requires some form of updates — whether it’s the newest software version of Firefox or the newest graphics driver for your computer. We all know this can get annoying… every few minutes another application is telling me I should update it and sometimes you can just forget, or refuse all together… but the downsides are rarely considered.

WordPress recently announced that if you do not have the newest version (or second newest version) you could be vulnerable to the latest worm. This one actually has the ability to register a new user which hides itself and later edits permalinks in order to hide spam and malware inside your old posts.  So make sure that you have the latest version of WordPress, you can check by going to “Tools” and then “Upgrade” and it will tell you whether it’s the latest or not. If you don’t have the latest version, update and check all of your old links immediately.

Acunetix Web Vulnerability Scanner will inform you if you are running a vulnerable version of WordPress or outdated and/or vulnerable versions of WordPress plugins. Download your 14-day trial to scan your WordPress installation for such vulnerabilities and more.

SOURCE: http://www.net-security.org/malware_news.php?id=1103

Share this post

Leave a Reply

Your email address will not be published.


*