Hackers successfully penetrate ILSpy domain on Wordpress | Gallery posted by FreedomHack 󱢏

Hackers successfully penetrated the ILSpy domain on Wordpress to adopt it as a malware release point.

Wordpress may be a tool for creating popular websites used by many website developers and marketing, but it is always known for being hacked and targeted by malware, and this time it may have to be reconsidered by many.

According to a report by the website, Cyber Security News mentioned that the official ILSpy domain located on the Wordpress system was successfully hacked by hackers, allowing hackers to use this trusted domain to release spying malware or Spyware. On the official website, after the user clicks on the download link, the link will take the user to the Repo or Repository on Github. But after the hack was successful, the hacker changed the link to take the victim elsewhere. Instead of downloading the ILSpy software as required, it turned into a dozen downloads. Instead, malware has allowed this attack to be identified as a supply chain attack or a form of supply chain attack, and because ILSpy is a software developer tool, it ensures that the hackers behind it want to specifically tackle the target audience.

After the victim has downloaded and installed fake software on the machine, the malware works to steal data such as Keystroke, passwords, steal Session Cookies for access to services, and secretly watch the traffic of data (Web Traffic Monitor). All of which can lead to leaks of company data and source code or even access code to the company's cloud infrastructure, leading to huge losses.

This detection was the work of an independent cyber researcher, RootSuccess, who recorded what was detected in video clips and reported it to vx-underground, a cybersecurity and malware knowledge site. After this point became social media news, Wordpress shut down the site. If visitors enter the site now, they will post a 502 Bad Gateway error message.