It has been recently discovered that hackers are taking advantage of an outdated Eval PHP WordPress plugin to deploy backdoors. This plugin, which was released in 2013 and hasn’t been updated since then, is being used by malicious actors to gain access to vulnerable websites.
The vulnerability lies in the fact that the plugin allows users to execute arbitrary code on a website without authentication or authorization. As such, attackers can easily inject malicious code into a website and take control of it. Once they have gained access, they can use the backdoor for various nefarious activities such as stealing data or launching further attacks against other websites.
Fortunately, there are steps you can take to protect yourself from this type of attack. First and foremost, make sure your plugins are up-to-date with the latest security patches and updates. Additionally, consider disabling any unnecessary plugins that may be installed on your site as these could potentially be exploited by attackers as well. Finally, ensure that all user accounts have strong passwords so that unauthorized access is not possible even if someone were able to gain entry into your system via a backdoor exploit like this one.
By following these simple steps you should be able to keep your website safe from potential threats posed by hackers abusing outdated Eval PHP WordPress plugins for their own ends. It’s important to remember though that no matter how secure you think your system is there will always be new vulnerabilities emerging so it pays off in the long run if you stay vigilant about keeping up with security best practices at all times!
|Hackers Abuse Outdated Eval PHP WordPress Plugin To Deploy Backdoors|Security|Latest Hacking News

Latest Hacking News
WooCommerce Payments WordPress Plugin Vulnerability Patched
A critical vulnerability has been fixed in the WooCommerce Payments WordPress plugin. The vulnerability, discovered by security researchers at Wordfence, could have allowed attackers to