Malicious WordPress Admin Creator
Malicious admin users get added to vulnerable WordPress sites often. This can happen in a variety of different ways, and sometimes the malware that creates these malicious users can hide in plain sight. Review this blog piece to read more about a fake WordPress admin creator.
Malicious admin users get added to vulnerable WordPress sites often. This can happen in a variety of different ways, and sometimes the malware that creates these malicious users can hide in plain sight. Injecting a malicious admin user into a WordPress site can allow attackers easy access back into a victims’ website after it has been cleaned. It is always recommended to review the WordPress administrators on your site often to best secure your site.
Important questions to ask when reviewing WordPress Admins
Some important questions to ask when determining whether a WordPress admin user is legitimate or not:
- Do I recognize this WordPress admin?
- Does the email address associated with the admin user appear safe?
- When was this admin user created?
- Does this admin user have any legitimate content attached to it?
- Did I or someone from my team add this admin user?
Would you like to read more? Visit the article at the Sucuri Blog.
https://blog.sucuri.net/2021/12/wordpress-admin-creator-a-simple-but-effective-attack.html