Possible Malware Infection

  • Resolved ALDesigner

    (@aldesigner)


    3 years, 11 months ago

    ManageWP alerted me this morning that over 80 of the blogs I manage there are infected with a javascript exploit that, according to all of my searching, can only be injected into a site via compromised plugin that has DB writing ability.

    When I compared the plugins installed on all infected sites with all of those not affected, the only plugin not shared on the uninfected sites was Simple Share Buttons Adder. More so, I just updated this plugin on all sites last Friday.

    Has there been any discussion of this yet? Thank you.

Viewing 3 replies - 1 through 3 (of 3 total)
  • Thread Starter ALDesigner

    (@aldesigner)

    UPDATE: After spending nearly 2 full days digging deeper into the matter, we’ve been able to determine that the Simple Share Buttons Adder plugin is not the cause for our sites being flagged for malware. Since that was the only change that occurred to any of our sites in recent history, we wanted to at least bring it to attention for possible consideration.

    Turns out the issue is from a script served to our sites by our CDN provider that is being falsely perceived as a shopping card exploit (we don’t even use the software this exploit is supposedly for, so the confused ensues).

    Plugin Contributor ShareThis

    (@sharethis)

    Hi there,

    Thank you for contacting us and pointing this out!

    We have passed this information on to our engineering team so they can review it, it is important for us to understand different scenarios that might not be related to our plugin so that we can address any inquiries from users in a timely manner.

    We thank you for letting us know what is causing this problem.

    Best,

    Plugin Contributor ShareThis

    (@sharethis)

    Hello,

    Thank you for your patience!

    Our engineering team has been working hard to improve the plugin, an update was released. Make sure you have the latest version of our plugin to avoid service issues.

    Best,

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Possible Malware Infection’ is closed to new replies.

Tags