25 Pharma Hacks OCT 2021 – WP Security Exploits for SEO/DDoS

Pharma Hacks OCT 2021

WP Security Exploits for SEO/DDoS

Be informed about the latest WP Security Exploits for SEO gains and DoS/DDoS remote controls, identified and reported publicly. With Pharma Hacks OCT 2021 the consequences of a hack are ugly. You will experience major backlash on your WordPress domain, costly damage control/recovery, immediate revenue loss with long-term consequences. Consider our FREE Pharma Hacks AUDIT.

An estimated 1.597.000+ active WordPress installations are susceptible to these attack types, considering only the publicly available numbers. The estimated number can double with versions already closed due to security concerns.

It is a whooping 213% increased trend compared to December 2020. We compare last month versus previous winter holiday season, which has the biggest shopping traffic and attack spike throughout the year. Read more about our previous reports here: 15 Pharma Hacks SEP 2021 – WP Security Exploits for SEO/DDoS and 8 Pharma Hacks JAN 2021 – WP Security Exploits for SEO/DDoS. The following cases made headlines PUBLICLY just last month in the Pharma Hacks OCT 2021 category:

• Reviews Plus – Reviews DoS
  • Reviews Plus is a free WordPress plugin that allows you to manage and display your customers reviews for products, services or any other type of content. It can be activated for any WordPress page, post or custom post type. Active installations: 2,000+

• MAZ Loader – Preloader Builder for WordPress – Arbitrary Loader Deletion via CSRF
  • MAZ Loader helps you add different styles of Preloaders into your site to make your users stay a delight to wait for your site to load. You do not need a developer to set up your Preloaders as its been built with ease of use in mind using our easy to use, yet powerful, Builder. Active installations: 1,000+

• Age Gate – Unauthenticated Import Settings
  • There are many uses for restricting content based on age, be it movie trailers, beer or other adult themes. This plugin allows you to set a restriction on what content can been seen or restricted based on the age of the user. Active installations: 30,000+

• Connections Business Directory – CSV Injection
  • Connections Business Directory is one of the best business directory plugins available for WordPress. Its simplicity in design and function, vast array of unique features and versatility are the reasons more and more people are turning to Connections Business Directory for their directory needs. Active installations: 10,000+

• JS Job Manager – Unauthenticated Arbitrary Plugin Installation/Activation
  • JS Jobs allows you to run your own, unique jobs classifieds service where you or employer can advertise their jobs, job seekers can upload their resume and apply to any jobs. Active installations: 600+

• WordPress Popups for Marketing and Email Newsletters, Lead Generation and Conversions by OptinMonster – Unprotected REST-API Endpoints
  • OptinMonster is the best popup builder and marketing plugin that helps you get more email subscribers, increase sales, and grow your business. Active installations: 1+ million

• Contest Gallery – Photo Contest Plugin for WordPress – Email Address Disclosure
• Contest Gallery – Photo Contest Plugin for WordPress – Missing Access Controls to Unauthenticated SQL injection
  • Highly configurable photo contest gallery plugin for WordPress. Active installations: 2,000+

• Stylish Cost Calculator – Unauthorised AJAX Calls to Stored XSS
  • Sell your products and service, collect leads, collect payments. Your users can calculate cost, ask for a quote and estimate, purchase a product, and more mor Active installations: 2,000+

• Logo Slider and Showcase – Plugin’s Settings Update
  • Logo Slider and Showcase is fully Responsive Plugin to display your logos, clients and partners with different ways like Grid, Slider and Isotope Filtering by category wise. Active installations: 10,000+

• Stylish Price List – Unauthenticated Arbitrary Image Upload
• Stylish Price List – Subscriber+ Arbitrary Image Upload
  • Create a stunning price list (price table/pricing table) with ease and make it your virtual high-quality brochure. It was developed for small businesses, spas, salons, restaurants, retail and more. Active installations: 3,000+

• WP Debugging – Unauthenticated Plugin’s Settings Update
  • This plugin sets the following debug constants in wp-config.php on plugin activation and removes them on plugin deactivation. Any errors will result in a PHP Exception being thrown. Active installations: 5,000+

• Secure Copy Content Protection and Content Locking – Email Address Disclosure
  • Secure Copy Content Protection is a plugin aimed at protecting web content from being plagiarized. Active installations: 10,000+

• Tawk.To Live Chat – Visitor Monitoring & Chat Removal
  • Over 3,800,000+ business users use the tawk.to FREE live chat app that lets you monitor and chat with visitors on your WordPress site. No catch. No spam. No Ads. It’s truly free and always will be. Active installations: 200,000+

• Backup and Restore plugin – WordPress – Arbitrary File Deletion
  • Backup and restore plugin provides All-in-one WordPress Backup and Restore Features.It provides WordPress backup and Restore with password-protected security. Active installations: 70+

• All-in-One Video Gallery – Local File Inclusion
  • All-in-One Video Gallery is a VIDEO POSTS plugin that helps you adding videos as posts and build scalable, searchable, SEO optimized video galleries in minutes. Active installations: 20,000+

• Single Post Exporter – Plugin’s Settings Update via CSRF
  • This plugin has been closed as of September 23, 2022 and is not available for download. Reason: Security Issue.

• WP Admin Logo Changer – Plugin’s Settings Update via CSRF
  • This plugin has been closed as of October 4, 2022 and is not available for download. This closure is temporary, pending a full review.

• Contact Form Advanced Database – Unauthorised AJAX Calls
  • This plugin has been closed as of September 27, 2022 and is not available for download. Reason: Security Issue.

• Wp Limits – Plugin’s Settings Update via CSRF
  • This plugin has been closed as of October 4, 2022 and is not available for download. This closure is temporary, pending a full review.

• Page/Post Content Shortcode – Arbitrary Posts/Pages Access
  • This plugin has been closed as of October 4, 2022 and is not available for download. This closure is temporary, pending a full review.

• Improved Include Page – Arbitrary Posts/Pages Access
  • This plugin has been closed as of October 8, 2022 and is not available for download. This closure is temporary, pending a full review.

• ToTop Link – Unauthenticated PHP Object Injection
  • This plugin has been closed as of October 21, 2022 and is not available for download. This closure is temporary, pending a full review.

• User meta shortcodes – Unauthorized Arbitrary User Metadata Access
  • This plugin has been closed as of October 12, 2022 and is not available for download. This closure is temporary, pending a full review.

• Push Notifications for WordPress (Lite) – Settings Update via CSRF
  • Send push notifications to iOS and Android devices when you publish a new post. Straight from your WordPress site, in real-time. This plugin has a built in hub, allowing WordPress to send out the push notifications directly—without using any third-party’s server. Active installations: 800+

• WP Reset – Most Advanced Reset Tool for WordPress – Database Reset via CSRF
  • WP Reset quickly resets the site’s database to the default installation values without modifying any files. It deletes all customizations and content, or just chosen parts like theme settings. WP Reset is fast and safe to use thanks to the built-in snapshots which provide 1-click restore functionality. Active installations: 300,000+

BRIEF: Pharma Hacks OCT 2021 is an SEO spam attack type, where a legitimate website is used to sell illicit drugs. In this type of attack, hackers hijack websites, injects malware and uses that specific domain to sell illicit drugs like Viagra, Cialis, Levitra. This is where it started and got its name.

Today, not just potency drugs are a drive. Anything that created interest from humans, but their local legislation failed to keep up with the latest trends are in this category. Consider this as a modern inquisition, where your domain is the heretic, spreading undesired ideology – sadly unknowingly.

Pharma Hacks Explained

The Pharma Hacks OCT 2021 exploits are used to insert rogue code in outdated versions of WordPress, themes and plugins. This new content inside existing pages and post are causing search engines to return ads for pharmaceutical products after a new indexation. The vulnerability is more of a spam menace than traditional malware but gives search engines enough reason to block the domain for distributing spam (NOT creating, JUST maintaining, harbouring, spreading).

Working parts of a Pharma Hacks OCT 2021 include a backdoor in plugins, themes and databases. However, the exploits are often vicious variants of encrypted malicious injections hidden in databases and require a thorough clean-up process to fix the vulnerability. Nevertheless, you can easily prevent Pharma Hacks by regularly updating your WordPress installations, themes, and plugins.

What is the impact of Pharma Hacks OCT 2021?

The consequences of a hack are ugly. You will experience major backlash on your WordPress domain such as:

– A marked drop in search engine rankings for the keywords you’re targeting;
– High bounce rates as visitors are redirected to different websites;
– Wasted SEO efforts in the future;
– SERP blacklist warnings on your website like:

— This site may be hacked
— Deceptive site ahead etc;
— Hosting account suspensions;
— Email providers blacklisting your domain;
— High cleanup, recovery, damage control costs;
— Major decline in your brand’s image, reputation.

What is Denial of Service (DoS)?

Perhaps the most dangerous of them all, Denial of Service (DoS) is used to overwhelm a specific domain’s hosting resources (memory, CPU, bandwidth, etc). Denial of service is typically accomplished by flooding the targeted machine or resource with superfluous requests in an attempt to overload systems and prevent some or all legitimate requests from being fulfilled.

Hackers have compromised millions of websites and raked in millions by exploiting outdated and buggy versions of WordPress, themes, plugins and 3rd party connected software. Even the latest versions of WordPress software cannot comprehensively defend against high-profile DoS attacks, but will at least help you to avoid getting caught in the crossfire between financial institutions and sophisticated cybercriminals.

What is Distributed Denial of Service (DDoS)?

A distributed denial-of-service (DDoS) attack is one of the most powerful weapons on the internet. When you hear about a website being “brought down by hackers”, it generally means it has become a victim of a DDoS attack. In short, this means that hackers made that domain unavailable by flooding or crashing the website with too much traffic.

Although financially motivated cybercriminals are less likely to target small companies, they tend to compromise outdated vulnerable websites in creating botnet chains to attack large businesses. The primary way a DDoS is accomplished is through a network of remotely controlled, hacked domains. This is where small businesses come to the crossfire. These are often referred to as zombies, botnets or network of bots. These are used to flood a high profile target.

What is the impact of DoS/DDoS?

Starts with a slow website, with vital parts not working accordingly (checkout, orders/account registration, processing, dispatching). It peaks for a real visitor as page not available. When the entire server crashed, then the domain is unavailable. END GAME.

This is a costly thing to defend in a cloud environment, due to creating more and more servers to serve traffic spike, it burns your hosting budget for an entire year in a few hours. In classical hosting environments, using a single physical machine to host the domain is simply incapable of facing even the most simple, smallest DoS or DDoS attacks.

 

MANAGED WordPress Security: Pharma Hacks OCT 2021 Related Posts