AUSTRALIA'S cyber agency, ASD’s ACSC, has issued a warning about a large-scale campaign exploiting vulnerabilities in content management systems (CMS) like WordPress. Unattributed malicious actors are scanning websites for known plugin flaws, leading to the deployment of webshells, specifically affecting many small and medium Australian businesses. Several vulnerabilities are highlighted, including unauthenticated file uploads and remote code execution.
Key plugins noted include Simple File List and Gravity Forms, among others. The impact of these attacks could result in website defacement, credential theft, or malware distribution to users. The ACSC emphasizes the importance of promptly patching software and maintaining website security, warning that the rise of AI is enabling faster, more widespread cyber operations.