PSA: Fake CVE-2023-45124 Phishing Scam Tricks Users Into Installing Backdoor Plugin [Tuesday, December 5, 2023]

PSA: Fake CVE-2023-45124 Phishing Scam Tricks Users Into Installing Backdoor Plugin [Tuesday, December 5, 2023]
https://www.securitricks.com/content/images/size/w600/format/webp/2023/12/ATTACK-REPORT-LOGO-2.png
Report

PSA: Fake CVE-2023-45124 Phishing Scam Tricks Users Into Installing Backdoor Plugin

Description :
Wordfence has issued a PSA warning about a phishing campaign targeting users of WordPress, which includes a malicious backdoor that allows attackers to gain full control of the WordPress site and access to a hidden administrator user.

Published Created Modified
2023-12-05 14:08:40 2023-12-05 14:08:40 2023-12-05 14:38:14

Tags

Indicators

Domains :
  • en-gb-wordpress.org
Hashes :
  • ffd5b0344123a984d27c4aa624215fa6452c3849522803b2bc3a6ee0bcb23809
MITRE ATT&CK Techniques :

External References

You can download the txt file containing the indicators by clicking on the button below:

About the author
Julien B.

Securitricks

Up-to-Date Cybersecurity Insights & Malware Reports

Securitricks

Great! You’ve successfully signed up.

Welcome back! You've successfully signed in.

You've successfully subscribed to Securitricks.

Success! Check your email for magic link to sign-in.

Success! Your billing info has been updated.

Your billing was not updated.