M-Shield & kingof - Fake Malware Backdoor Plugins



Description
Sucuri Labs found that the M-Shield & kingof fake WordPress plugins were used as malware droppers, with the initial compromise likely coming from another legitimate vulnerable WordPress plugin security vulnerability.

Affects Plugins

no known fix
no known fix

References

URL https://labs.sucuri.net/fake-m-shield-wordpress-plugin/

Classification

Type BACKDOOR
CWE CWE-912

Miscellaneous

Views 1483
Verified No
WPVDB ID 10183

Timeline

Publicly Published 2020-04-22 (about 1 month ago)
Added 2020-04-22 (about 1 month ago)
Last Updated 2020-04-23 (about 1 month ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin