"Over 1 Million WordPress Sites Infected by Balada Injector Malware Campaign"

Since 2017, it is estimated that over one million WordPress websites have been infected by an ongoing campaign to deploy malware known as Balada Injector. According to GoDaddy's Sucuri, the campaign exploits all known and recently discovered theme and plugin vulnerabilities to compromise WordPress sites. The attacks are known to occur every few weeks in waves. Denis Sinegubko, a security researcher, stated that this campaign is readily identifiable due to its preference for String.fromCharCode obfuscation, the use of newly registered domain names hosting malicious scripts on random subdomains, and redirects to various scam sites. The websites contain fake tech support, fraudulent lottery wins, and rogue CAPTCHA pages urging users to enable notifications to 'Please Allow to verify, that you are not a robot,' allowing the actors to deliver spam advertisements. This article continues to discuss the Balada Injector malware campaign. 

THN reports "Over 1 Million WordPress Sites Infected by Balada Injector Malware Campaign"