Since Sunday, December 14th, over 100,000 WordPress sites have fallen victim to Russian malware “SoakSoak”. The malware takes advantage of a vulnerability in popular slideshow plugin Slider Revolution (also known as RevSlider) and targets users by redirecting them to SoakSoak . ru and/or downloading malicious files to users’ computers without their knowledge.
Google has already blacklisted over 10,000 infected domains. However, researchers at Sucuri warn that the extent of the damage is far greater, and many site admins may not even know their sites have been affected since RevSlider is often bundled with many WordPress themes. Furthermore, the vulnerability [...]