WordPress sites hacked due to Netrino Exploit Kit
If you are using WordPress for your personal blog or business website, you need to upgrade your current version to WordPress 4.3 immediately to secure your website against it’s latest vulnerability.
“Neutrino Exploit Kit (EK) appeared on the scene around March of 2013 and continues to remain active and incorporate new exploits. In the beginning of July, Neutrino reportedly incorporated the HackingTeam 0day (CVE-2015-5119), and in the past few days we’ve seen a massive uptick in the use of the kit. The cause for this uptick appears due to widespread WordPress site compromises.
ThreatLabZ started seeing a new campaign where WordPress sites running version 4.2 and lower were compromised, and the image below illustrates the components involved in this campaign.” (2015 Aug 24, Zscaler.com)
I love graphic presentation, it is easier to understand the security issue. Here’s the complete Neutrino WordPress campaign provided by Zscaler ThreatLabz.
Our WordPress is fully managed by Moscom.com Web Hosting Provider. I don’t have to do anything, just checking if my content management system is up to date.
Other WordPress security news that you have missed? Check it here.
Enjoy your day.