Security News Thousands of Sites with Popup Builder Compromised by Balada Injector

nicolaasjan

nicolaasjan

Level 5
Thread author
Verified
Well-known
May 29, 2023
211
Content source
https://blog.sucuri.net/2024/01/thousands-of-sites-with-popup-builder-compromised-by-balada-injector.html
On December 11, 2023 WPScan published Marc Montpas’ research on the stored XSS vulnerability in the popular Popup Builder plugin (200,000+ active installation) that was fixed in version 4.2.3.
A couple of days later, on December 13th, the Balada Injector campaign started infecting websites with older versions of the Popup Builder. The attack used a freshly registered (December 13) domain specialcraftbox[.]com At the current time of writing PublicWWW detects the injection on over 6,200 sites.
Click to expand...
 
  • +Reputation
Reactions: vtqhtr413

Similar threads

nicolaasjan
    • Like
Security News New Malware Campaign Found Exploiting Stored XSS in Popup Builder < 4.2.3
Replies
1
Views
1,065
Security News
nicolaasjan
nicolaasjan
nicolaasjan
    • Like
    • +Reputation
Thousands of WordPress sites hacked through tagDiv plugin vulnerability
Replies
0
Views
1,452
News Archive
nicolaasjan
nicolaasjan
Gandalf_The_Grey
    • Wow
    • Like
    • Sad
Security News Belgian insurers leak data of tens of thousands of customers
Replies
0
Views
1,370
Security News
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top