Hiki i nā mea hoʻouka ke hoʻokomo i kahi backdoor i loko o nā plugins 40 a me nā kumumanaʻo 53 no ka ʻōnaehana hoʻokele waiwai WordPress, i hoʻomohala ʻia e AccessPress, e ʻōlelo ana ua hoʻohana ʻia kāna mau mea hoʻohui ma mua o 360 tausani mau pūnaewele. ʻAʻole i hāʻawi ʻia nā hopena o ka loiloi o ka hanana, akā ua manaʻo ʻia ua hoʻokomo ʻia ke code malicious i ka wā o ka hoʻololi ʻana o ka pūnaewele AccessPress, e hana ana i nā loli i nā waihona i hāʻawi ʻia no ka hoʻoiho ʻana me nā hoʻokuʻu i hoʻokuʻu ʻia, ʻoiai aia ka backdoor. aia wale nō ma ke code i hoʻolaha ʻia ma o ka punaewele AccessPress oihana, akā ʻaʻole i loaʻa i loko o ia mau hoʻokuʻu like o nā mea hoʻohui i hoʻolaha ʻia ma o ka papa kuhikuhi WordPress.org.
Ua ʻike ʻia nā hoʻololi ʻino e kahi mea noiʻi ma JetPack (kahi mahele o ka mea hoʻomohala WordPress Automatic) ʻoiai e nānā ana i nā code ʻino i loaʻa ma ka pūnaewele o ka mea kūʻai aku. Ua hōʻike ʻia kahi loiloi o ke kūlana i loaʻa nā loli maikaʻi ʻole i ka WordPress add-on i hoʻoiho ʻia mai ka punaewele AccessPress. ʻO nā mea hoʻohui ʻē aʻe mai ka mea hana hoʻokahi i kau ʻia i nā hoʻololi ʻino i hiki ke komo piha i ka pūnaewele me nā kuleana luna.
I ka wā o ka hoʻololi ʻana, ua hoʻohui nā mea hoʻouka i ka faila "initial.php" i nā waihona me nā plugins a me nā kumumanaʻo, i hoʻopili ʻia ma o ke kuhikuhi "include" i ka faila "functions.php". No ka huikau i ke ala, ua hoʻopili ʻia ka ʻike ʻino i ka faila "initial.php" ma ke ʻano he base64 i hoʻopaʻa ʻia o ka ʻikepili. ʻO ka hoʻokomo ʻino, ma lalo o ke ʻano o ka loaʻa ʻana o kahi kiʻi mai ka pūnaewele wp-theme-connect.com, hoʻouka pololei i ka code backdoor i loko o ka faila wp-includes/vars.php.
Ua ʻike ʻia nā pūnaewele mua i komo i nā hoʻololi ʻino i nā mea hoʻohui AccessPress i Kepakemapa 2021. Ua manaʻo ʻia ʻo ia ka manawa i hoʻokomo ʻia ka puka hope i loko o nā add-ons. ʻO ka hoʻolaha mua iā AccessPress e pili ana i ka pilikia i ʻike ʻia ʻaʻole i pane ʻia, a hiki i ka AccessPress ke loaʻa ka nānā ma hope o ka hoʻopili ʻana i ka hui WordPress.org i ka hoʻokolokolo. Ma ʻOkakopa 15, 2021, ua wehe ʻia nā waihona i hoʻopilikia ʻia e ka puka hope mai ka pūnaewele AccessPress, a ua hoʻokuʻu ʻia nā mana hou o nā mea hoʻohui i Ianuali 17, 2022.
Ua nānā ʻokoʻa ʻo Sucuri i nā pūnaewele kahi i hoʻokomo ʻia ai nā mana o AccessPress a ʻike i ka hele ʻana o nā modula maikaʻi i hoʻouka ʻia ma kahi backdoor i hoʻouna i ka spam a hoʻohuli hou i nā hoʻololi i nā pūnaewele hoʻopunipuni (ua hoʻopaʻa ʻia nā modula i ka makahiki 2019 a me 2020). Ua manaʻo ʻia ke kūʻai aku nei nā mea kākau o ka backdoor i ke komo ʻana i nā pūnaewele i hoʻopaʻa ʻia.
Nā kumuhana i loaʻa ka pani puka hope:
- accessbuddy 1.0.0
- accesspress-kumu 3.2.1
- accesspress-lite 2.92
- accesspress-mag 2.6.5
- accesspress-parallax 4.5
- accesspress-ray 1.19.5
- accesspress-root 2.5
- accesspress-staple 1.9.1
- accesspress-hale kūʻai 2.4.9
- 'oihana-lite 1.1.6
- aplite 1.0.6
- binle 1.0.4
- blogger 1.2.6
- kūkulu-lite 1.2.5
- doko 1.0.27
- hoʻomālamalama 1.3.5
- hale kūʻai hale kūʻai 1.2.1
- kiʻi 2.4.0
- gaga-corp 1.0.8
- gaga-lite 1.4.2
- hoʻokahi-space 2.2.8
- parallax-blog 3.1.1574941215
- parallaxsome 1.3.6
- punte 1.1.2
- kahuli 1.3.1
- ripple 1.2.0
- scrollme 2.1.0
- sportsmag 1.2.1
- storevilla 1.4.1
- swing-lite 1.1.9
- ka mea hoʻolaha 1.3.2
- ka-Poakahi 1.4.1
- uncode-lite 1.3.1
- unicon-lite 1.2.6
- vmag 1.2.7
- vmagazine-lite 1.3.5
- vmagazine-news 1.0.5
- zigcy-pepe 1.0.6
- zigcy-cosmetics 1.0.5
- zigcy-lite 2.0.9
Nā plugina i ʻike ʻia ai ka pani ʻana o ka puka hope:
- accesspress-anonymous-post 2.8.0 2.8.1 1
- accesspress-custom-css 2.0.1 2.0.2
- accesspress-custom-post-type 1.0.8 1.0.9
- accesspress-facebook-auto-post 2.1.3 2.1.4
- accesspress-instagram-feed 4.0.3 4.0.4
- accesspress-pinterest 3.3.3 3.3.4
- accesspress-social-counter 1.9.1 1.9.2
- accesspress-social-icons 1.8.2 1.8.3
- accesspress-social-login-lite 3.4.7 3.4.8
- accesspress-social-share 4.5.5 4.5.6
- accesspress-twitter-auto-post 1.4.5 1.4.6
- accesspress-twitter-feed 1.6.7 1.6.8
- ak-menu-icons-lite 1.0.9
- ap-hoa 1.0.7 2
- ap-contact-form 1.0.6 1.0.7
- ap-custom-testimonial 1.4.6 1.4.7
- ap-mega-menu 3.0.5 3.0.6
- ap-pricing-tables-lite 1.1.2 1.1.3
- apex-notification-bar-lite 2.0.4 2.0.5
- cf7-store-to-db-lite 1.0.9 1.1.0
- comments-disable-accesspress 1.0.7 1.0.8
- maʻalahi-ʻaoʻao-tab-cta 1.0.7 1.0.8
- everest-admin-theme-lite 1.0.7 1.0.8
- everest-coming-soon-lite 1.1.0 1.1.1
- everest-comment-rating-lite 2.0.4 2.0.5
- everest-counter-lite 2.0.7 2.0.8
- everest-faq-manager-lite 1.0.8 1.0.9
- everest-gallery-lite 1.0.8 1.0.9
- everest-google-places-reviews-lite 1.0.9 2.0.0
- everest-review-lite 1.0.7
- everest-tab-lite 2.0.3 2.0.4
- everest-timeline-lite 1.1.1 1.1.2
- inline-call-to-action-builder-lite 1.1.0 1.1.1
- product-slider-no-woocommerce-lite 1.1.5 1.1.6
- akamai-logo-showcase-lite 1.1.7 1.1.8
- nā leka uila akamai 2.0.8 2.0.9
- smart-scroll-to-top-lite 1.0.3 1.0.4
- huina-gdpr-compliance-lite 1.0.4
- huina-hui-lite 1.1.1 1.1.2
- hope-author-box-lite 1.1.2 1.1.3
- hope-form-builder-lite 1.5.0 1.5.1
- woo-badge-designer-lite 1.1.0 1.1.1
- wp-1-slider 1.2.9 1.3.0
- wp-blog-manager-lite 1.1.0 1.1.2
- wp-comment-designer-lite 2.0.3 2.0.4
- wp-cookie-user-info 1.0.7 1.0.8
- wp-facebook-review-showcase-lite 1.0.9
- wp-fb-messenger-button-lite 2.0.7
- wp-floating-menu 1.4.4 1.4.5
- wp-media-manager-lite 1.1.2 1.1.3
- wp-popup-banners 1.2.3 1.2.4
- wp-popup-lite 1.0.8
- wp-product-gallery-lite 1.1.1
Source: opennet.ru