Kaksi viikkoa sitten keskustelimme uudesta kehityksest\u00e4 verkkosivustojen hakkeroinnissa: Web3-kryptovaluuttalompakoiden tyhjent\u00e4jist\u00e4. Olemme seuranneet tarkasti merkitt\u00e4vint\u00e4 varianttia, joka injektoi tyhjent\u00e4ji\u00e4 k\u00e4ytt\u00e4en ulkoista cachingjs\/turboturbo.js-skripti\u00e4. Sivustomme SiteCheck-verkkosivuston skanneri on jo havainnut t\u00e4m\u00e4n version yli 1,200 sivustossa helmikuun 2024 alusta l\u00e4htien.<\/p>\n\n\n\n
Viimeisimm\u00e4n postauksemme j\u00e4lkeen t\u00e4m\u00e4 haittaohjelmakampanja on n\u00e4hnyt kaksi uutta iteraatiota, jotka ovat johtaneet hajautettuihin brute force -hy\u00f6kk\u00e4yksiin kohdistettuja WordPress-sivustoja vastaan t\u00e4ysin viattomien ja tiet\u00e4m\u00e4tt\u00f6mien sivustovierailijoiden selaimista. Kuulostaa liittym\u00e4tt\u00f6m\u00e4lt\u00e4, eik\u00f6? No, katsotaanpa tarkemmin.<\/p>\n\n\n\n
Two weeks ago we discussed a new development in website hacks: Web3 crypto wallet drainers. We\u2019ve been closely following the most significant variant which injects drainers using the external cachingjs\/turboturbo.js script. Our SiteCheck website scanner has already detected this version on over 1,200 sites since the beginning of February, 2024. Since our last post, this malware campaign has seen two new iterations resulting in distributed brute force attacks against target WordPress websites from the browsers of completely innocent and unsuspecting site visitors. Sounds unrelated, right? Well, let\u2019s take a closer look<\/p>","protected":false},"excerpt":{"rendered":"
Kaksi viikkoa sitten keskustelimme uudesta kehityksest\u00e4 verkkosivustojen hakkeroinnissa: Web3-kryptovaluuttalompakoiden tyhjent\u00e4jist\u00e4. Olemme seuranneet tarkasti merkitt\u00e4vint\u00e4 varianttia, joka injektoi tyhjent\u00e4ji\u00e4 k\u00e4ytt\u00e4en ulkoista […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[9],"tags":[15],"class_list":["post-937","post","type-post","status-publish","format-standard","hentry","category-security","tag-tietoturva"],"aioseo_notices":[],"aioseo_head":"\n\t\t\n\t\n\t\n\t\n\t\n\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t