AUSTRALIA'S Signals Directorate has issued a warning about a large-scale exploitation campaign targeting content management systems (CMS) like WordPress and Joomla. Attackers are exploiting vulnerabilities to deploy webshells on affected websites, allowing for remote access and broader attacks. The alert details various compromised software and plugins, emphasizing the urgency for businesses to update their systems to patch known vulnerabilities.
The advisory includes actions to take if a webshell is detected, such as examining logs and securing web directories. The campaign highlights the increased speed of cyber operations due to AI advancements.