How To Detect And Clean Crypto PHP Malware
CryptoPHP is a threat that uses backdoored Joomla, WordPress and Drupal themes and plug-ins to compromise webservers on a large scale. By publishing pirated themes and plug-ins free for anyone to use instead of having to pay for them, the CryptoPHP actor is social engineering site administrators into installing the included backdoor on their server.
After being installed on a webserver the backdoor has several options of being controlled which include
command and control server communication, mail communication as well as manual control.
More detailsĀ : https://foxitsecurity.files.wordpress.com/2014/11/cryptophp-whitepaper-foxsrt-v4.pdf
Picture : foxitsecurity.files.wordpress.com
How To Detect And Clean CryptoPHP Malware?
(more…)