#1 Middle East & Africa Trusted Cybersecurity News & Magazine |

34 C
Dubai
Wednesday, July 2, 2025
HomeTopics 5Web App SecurityThe ubiquitous OpenSSH server software, used for secure remote access on millions...

The ubiquitous OpenSSH server software, used for secure remote access on millions of systems, is under attack.

Date:

Related stories

PDFs: Portable Documents or Perfect Phishing Vectors?

Cybersecurity professionals are sounding the alarm: PDF attachments are...

Google Urgently Patches CVE‑2025‑6554 Zero‑Day in Chrome 138 Stable Update

On 26 June 2025, Google rapidly deployed a Stable Channel update...

French Police Arrest Five Key Operators Behind BreachForums Data-Theft Platform

On 25 June 2025, France’s specialist cybercrime unit (BL2C) detained five...
spot_imgspot_imgspot_imgspot_img

In the realm of WordPress, plugins are often seen as powerful tools to enhance websites. But what happens when a trusted plugin turns out to be a Trojan horse, harboring a hidden backdoor? That’s the unsettling reality facing users of the “Essential Addons for WPBakery Page Builder” plugin, as a recently discovered vulnerability has exposed countless websites to potential takeover.

The Backdoor’s Blueprint:

The vulnerability, discovered by security researchers, resides within a specific version of the plugin (5.7.4 and earlier). It allows attackers to inject malicious code into websites, granting them full control over content, functionality, and even sensitive data. This backdoor effectively hands over the keys to the kingdom, leaving websites vulnerable to data theft, defacement, and further attacks.

How It Works:

The exploit hinges on a PHP file named “download-monitor.php” that contains a flawed function. Attackers can leverage this flaw to remotely execute arbitrary code on affected websites. This means they can install malware, steal data, or even redirect users to malicious websites – all without the website owner’s knowledge.

Widespread Impact:

The plugin’s popularity compounds the severity of this vulnerability. With over 1 million active installations, a significant number of websites are potentially at risk. This includes businesses, blogs, personal websites, and e-commerce stores – any website using the vulnerable version of the plugin is a potential target.

Taking Action to Secure Your Site:

1. Update Immediately: The plugin developers have released a patched version (5.7.5) to address the vulnerability. If you have the plugin installed, update to the latest version as soon as possible.

2. Scan for Compromise: Even if you’ve updated, it’s crucial to scan your website for signs of compromise. Look for any suspicious files or code that might have been injected.

3. Implement Security Best Practices:

- Choose plugins carefully and from reputable sources.
- Regularly update plugins and themes.
- Use strong passwords and enable two-factor authentication.
- Regularly backup your website.

Staying Vigilant in a Web of Vulnerabilities:

This incident underscores the importance of vigilance in the ever-evolving world of cybersecurity. Plugins, while offering valuable features, can also introduce vulnerabilities. Stay informed about the latest threats, practice proactive security measures, and choose plugins wisely. Remember, in the digital landscape, awareness and action are your strongest defenses.

Ouaissou DEMBELE
Ouaissou DEMBELEhttp://cybercory.com
Ouaissou DEMBELE is a seasoned cybersecurity expert with over 12 years of experience, specializing in purple teaming, governance, risk management, and compliance (GRC). He currently serves as Co-founder & Group CEO of Sainttly Group, a UAE-based conglomerate comprising Saintynet Cybersecurity, Cybercory.com, and CISO Paradise. At Saintynet, where he also acts as General Manager, Ouaissou leads the company’s cybersecurity vision—developing long-term strategies, ensuring regulatory compliance, and guiding clients in identifying and mitigating evolving threats. As CEO, his mission is to empower organizations with resilient, future-ready cybersecurity frameworks while driving innovation, trust, and strategic value across Sainttly Group’s divisions. Before founding Saintynet, Ouaissou held various consulting roles across the MEA region, collaborating with global organizations on security architecture, operations, and compliance programs. He is also an experienced speaker and trainer, frequently sharing his insights at industry conferences and professional events. Ouaissou holds and teaches multiple certifications, including CCNP Security, CEH, CISSP, CISM, CCSP, Security+, ITILv4, PMP, and ISO 27001, in addition to a Master’s Diploma in Network Security (2013). Through his deep expertise and leadership, Ouaissou plays a pivotal role at Cybercory.com as Editor-in-Chief, and remains a trusted advisor to organizations seeking to elevate their cybersecurity posture and resilience in an increasingly complex threat landscape.

Subscribe

- Never miss a story with notifications

- Gain full access to our premium content

- Browse free from up to 5 devices at once

Latest stories

spot_imgspot_imgspot_imgspot_img

LEAVE A REPLY

Please enter your comment!
Please enter your name here