Hackers Push Malware via Hacked WordPress Sites and Black Hat SEO
Recently Gootkit data stealer has evolved into a complex and stealthy framework and got itself a name Gootloader, which is now pushing malware through hacked WordPress sites and malicious SEO techniques for Google results. Attackers have used Gootloader's mechanism since last year's REVil ransomware campaign. Then the actors regrouped by forming a vast network of hacked WordPress sites and using SEO poisoning to show in Google forum posts fake forums with malicious links. According to cybersecurity company Sophos, Gootloader now controls about 400 servers active at any time that host hacked, legitimate websites. Read more...