ProHoster > Π‘Π»ΠΎΠ³ > interrete nuntium > Posticum in 93 AccessPress plugins et themata usus in 360 websites

Posticum in 93 AccessPress plugins et themata usus in 360 websites

Invasores in posticum in quadraginta plugins et 40 argumenta pro WordPress contenti systematis administrationis emerunt, ab AccessPress evoluta, quae affirmat additiones suas plusquam 53 mille situs adhibitas esse. Eventus analyseos incidentis nondum provisi sunt, sed ponatur quod malivolum codicem in compromisso AccessPress website introductum sit, mutationibus archivis oblatis pro emissione emissi iam dimissi, cum posticum praesens adest. tantum in codice per AccessPress officialem situm distributum est, sed abest in illis eadem emissiones additionum per WordPress.org distributas.

Mutationes malitiosae inventae sunt ab inquisitore apud JetPack (divisio elit Automatic WordPress) dum codicem malignum explorans in loco huius loci invenisti. Analysis condicionis ostendit malicias mutationes inesse in WordPress addendi in receptae a website officiali AccessPress. Aliae additiones ex eodem fabricare malitiosis modificationibus subiectae erant quae plenam accessum ad locum cum iuribus administratoribus permiserunt.

Per modificationem, oppugnatores "initial.php" tabulam scriniis cum plugins et themata addiderunt, quae per "includunt" directivam in "functionibus.php" connexam erant. Vestigium ad confundendum, malignum contentum in "initial.php" fasciculus camouflaged ut base64 truncus notitiarum encoded. Mali inserta, sub specie obtinendae imaginis e loco wp-theme-connect.com, directe in posticum codicem in wp-includes/vars.php fasciculum oneravit.

Posticum in 93 AccessPress plugins et themata usus in 360 websites
Posticum in 93 AccessPress plugins et themata usus in 360 websites

Primae sites quae malignas mutationes in AccessPress addendi additiones comprehenderunt mense Septembri 2021 notae sunt. Ponitur tum fuisse posticum insertum additionibus. Prima notificatio ad AccessPress de problema identitate nihil solutum est, et AccessPress tantum operam dare potuit postquam implicavit theam VerbiPress.org in investigatione. Die 15 mensis Octobris anno 2021 tabularia posticii e website AccessPress remota sunt, et novae versiones additionum die 17 Ianuarii 2022 remissae sunt.

Sucuri separatim examinati sunt sites quibus affectatae versiones AccessPress inauguratae sunt et identificabantur praesentiam malignorum modulorum oneratam per posticum qui spamma misit et transitus ad dolosas sites redirected (modorum 2019 et 2020 datae sunt). Ponitur auctores posticae venditionis accessum ad loca suspecta.

Themata in quibus posticum substitutio refertur:

  • accessbuddy 1.0.0
  • accesspress-basic 3.2.1
  • accesspress-lite 2.92
  • accesspress-mag 2.6.5
  • accesspress-parallaxis 4.5
  • accesspress-ray 1.19.5
  • accesspress-radix 2.5
  • accesspress-stapulae 1.9.1
  • accesspress-copia 2.4.9
  • propellente-lite 1.1.6
  • aplite 1.0.6
  • bingle 1.0.4
  • blogger 1.2.6
  • construction-lite 1.2.5
  • doko 1.0.27
  • illuminare 1.3.5
  • fashstore 1.2.1
  • consequat 2.4.0
  • gaga-corp 1.0.8
  • gaga-lite 1.4.2
  • unum spatium 2.2.8
  • parallax-blog 3.1.1574941215
  • parallaxsome 1.3.6
  • punte 1.1.2
  • revolvat 1.3.1
  • laniatus 1.2.0
  • scrollme 2.1.0
  • sportsmag 1.2.1
  • storevilla 1.4.1
  • adductius-lite 1.1.9
  • the-launcher 1.3.2
  • the-monday 1.4.1
  • uncode-lite 1.3.1
  • unicon-lite 1.2.6
  • vmag 1.2.7
  • vmagazine-lite 1.3.5
  • vmagazine-nuntium 1.0.5
  • zigcy-infans 1.0.6
  • zigcy-stirpea 1.0.5
  • zigcy-lite 2.0.9

Plugins in quibus posticum substitutio deprehensa est;

  • accesspress-anonymous-post 2.8.0 2.8.1 1
  • accesspress-custom-css 2.0.1 2.0.2
  • accesspress-custom-post-type 1.0.8 1.0.9
  • accesspress-facebook-auto-post 2.1.3 2.1.4
  • accesspress-instagram-feed 4.0.3 4.0.4
  • accesspress-pinterest 3.3.3 3.3.4
  • accesspress-social counter 1.9.1 1.9.2
  • accesspress-social-icons 1.8.2 1.8.3
  • accesspress-social-login-lite 3.4.7 3.4.8
  • accesspress-social-share 4.5.5 4.5.6
  • accesspress-twitter-auto-post 1.4.5 1.4.6
  • accesspress-twitter-feed 1.6.7 1.6.8
  • ak-menu-icon-lite 1.0.9
  • ap-companion 1.0.7 2
  • ap-contactum 1.0.6 1.0.7
  • 1.4.6 . 1.4.7 XNUMX
  • ap-mega-menu 3.0.5 3.0.6
  • ap-pricing tabulis 1.1.2 1.1.3
  • apice notificatione-bar-lite 2.0.4 2.0.5
  • cf7-ad-db-lite 1.0.9 1.1.0
  • comment-disable-accesspress 1.0.7 1.0.8
  • facile latus tab-cta 1.0.7 1.0.8
  • everest-admin-theme-lite 1.0.7 1.0.8
  • everest-veniens cito lite 1.1.0 1.1.1
  • everest-comment-rating-lite 2.0.4 2.0.5
  • everest - counter-lite 2.0.7 2.0.8
  • everest-faq-procurator-lite 1.0.8 1.0.9
  • everest-gallery-lite 1.0.8 1.0.9
  • everest-google-loca-recognitiones 1.0.9 2.0.0
  • everest-recensio-lite 1.0.7
  • everest-tab-lite 2.0.3 2.0.4
  • everest timeline-lite 1.1.1 1.1.2
  • inline-vocatio ut actio aedificator-lite 1.1.0 1.1.1
  • product-lapsus pro woocommerce 1.1.5 1.1.6
  • smart-logo-showcase-lite 1.1.7 1.1.8
  • smart-scroll-posts 2.0.8 2.0.9
  • smart-librum-ut-top-lite 1.0.3 1.0.4
  • summa-gdpr-obsequio-lite 1.0.4
  • summa lite 1.1.1 1.1.2
  • 1.1.2 1.1.3
  • ultima forma aedificator-lite 1.5.0 1.5.1
  • woo-insigne-designer-lite 1.1.0 1.1.1
  • wp-1-slider 1.2.9 1.3.0
  • wp-blog-procurator-lite 1.1.0 1.1.2
  • wp-comment-designer-lite 2.0.3 2.0.4
  • wp-crustulum-user-info 1.0.7 1.0.8
  • wp-facebook-review-showcase-lite 1.0.9
  • wp-fb-nunti-button-lite 2.0.7
  • wp-fluitans-menu 1.4.4 1.4.5
  • wp-media procurator-lite 1.1.2 1.1.3
  • wp-popup-banners 1.2.3 1.2.4
  • wp-popup-lite 1.0.8
  • wp-productum porticus 1.1.1

Source: opennet.ru