Linux Backdoor Malware Targets Outdated WordPress Themes and Plugins

Written By: author avatar Komal Bothra
author avatar Komal Bothra
Hey, I’m Komal. I write content that speaks from the heart and makes WordPress work for you. Let’s make your ideas come alive!
Linux Backdoor Malware Targets WordPress

Security firm Doctor Web has discovered a malicious Linux program that targets WordPress sites running outdated and vulnerable plugins and themes. The malware is designed to exploit 30 theme and plugin vulnerabilities to inject malicious JavaScript into websites, redirecting visitors to the attacker’s chosen website. It has been active for over three years and has been updated to target additional vulnerabilities. 

The malware targets 32-bit versions of Linux but can also run on 64-bit versions. There are two versions of the malware: Linux.BackDoor.WordPressExploit.1 and Linux.BackDoor.WordPressExploit.2. The latter includes an updated server address for distributing the malicious JavaScript and an expanded list of exploited vulnerabilities. Doctor Web’s report speculates that attackers may have a long-term plan to retain administrative access even after users update to newer, patched versions of the compromised plugins.

Doctor Web has released a document containing indicators of compromise for the Linux backdoor malware infecting WordPress websites. The document includes hashes, IP addresses, and domains used by the malware in its attacks. Security professionals and WordPress administrators can use this information to detect and prevent further infections.

To protect against this threat, it is essential for WordPress users to keep their themes and plugins up to date and to use strong, unique passwords. It is also a good idea to use a web application firewall and to regularly scan for malware.

If you suspect that your WordPress site has been compromised, it is essential to take immediate action to secure it and prevent further damage. This may include restoring the site from a backup and installing security measures to prevent future attacks.

Related Posts

Top Biophilic Website Design Examples

Best Biophilic Website Design Examples in 2025

As our lives become increasingly digitized, the connection to nature is fading for many. Between

Join the Nest: From Application to Onboarding

Join the Nest: From Application to Onboarding

At Seahawk, we don’t just hire, we welcome. Every team member is a vital part

Best WordPress Plugins for Managing Adverts

Best WordPress Plugins for Managing Adverts

Monetizing your website is not just a strategy but a necessity, effectively managing adverts becomes

Get started with Seahawk

Sign up in our app to view our pricing and get discounts.