100,000+ WordPress Websites compromised: trends, realities and solutions.

With more than 70 million websites, on its asset, WordPress, is a free most popular CMS to build and run your website anywhere and anytime. This popularity is a grail for notorious attackers. So, according to Tony Perez  Co-Founder / CEO at Sucuri, 100,000+ WordPress Websites are compromised.

Their preliminary analysis is showing correlation with the Revslider vulnerability we reported a few months back. 

The impact seems to be affecting most hosts across the WordPress hosting spectrum. Quick breakdown of the decoding process is available via our PHP Decoder.

SoakSoak Malware Anatomy when decoded can load a javascript malware from the SoakSoack.ru domain, specifically this file: hxxp://soaksoak.ru/xteas/code

If you believe you are infected you can use our Free SiteCheck scanner.