WordPress Sites Are Being Pwned In Fake Ransomware Attacks

Cybersecurity firm Sucuri has discovered WordPress sites are being hacked in fake ransomware attacks. Researchers discovered the attacks on unencrypted WordPress pages where the threat actor modified an installed WordPress plugin to display a ransom note and countdown. The plugin also modified all WordPress blog posts and set their ‘post_status’ to ‘null’, causing them to go into an unpublished state. Seeing as I am a WordPress user, I am concerned about this. As a result, I’ve taken the advice that Sucuri had provided to protect himself.

 Saumitra Das, CTO and Cofounder of Blue Hexagon had this to say:

 This is an interesting take on “extorting” victims and may succeed for site owners who fear loss of business. Ransomware actors are innovating on extorting rather than encryption given that backup technology and its adoption has improved in the last few years. This is just another example of extortion innovation. Attackers are not just encrypting but naming and shaming the brand, exfiltrating data, threatening executives and users as well.

Eddy Bobritsky, CEO of Minerva Labs also had this to say:

Threat actors always find new and creative ways to commit cyber attacks. Although ransomware was fake here, there is no doubt someone gained hold part of the system, and the end result was almost the same.

Understanding that no one is immune from cyber attacks, and protecting your environment by ransomware prevention tools is crucial, and should be top of mind, before anything starts to happen. Simple actions can be taken and there is technology that was built to prevent the initial steps, before any damage begins. 

I took action to protect myself. Other WordPress users should do the same as protecting yourself is isn’t difficult from what I can tell. And it will not only stop people from being freaked out. It will also stop repetitional damage.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: