Almost certain source of malware and backdoors
-
Doing scan of my site with WPFencer revealed several PHP backdoors on my site. I also one All-in-One WP Security which scans my site every week and send me a list of all files which have been added, modified or removed. I compared the files found by WPFencer with the emails sent by AIO WP Security. I saw that on the same days that the corrupt/malware files had been added to my site, the index.html and index.php files of this file manager plugin had been modified. No other files. Only these two files related to this plugin.
Then I looked again at the review for this plugin. Guess what! I’m not the only person who thinks this is a source of malware and backdoors. This plugin should be removed from the WordPress store!
Edit: After browsing through the reviews, one can find the reports of hacked websites going back upto a year (that’s as far as I looked). Each time the developer, Mandeep Singh, says that they monitor the code everyday for weaknesses. This only hardens the suspicions that these backdoors are not accidental but are placed by the developers themselves.
- The topic ‘Almost certain source of malware and backdoors’ is closed to new replies.
