Jump to content
Report any bug Read more... ×
We're hiring! We are accepting applications for Developers, Teachers, Redactors and Junior Moderators. Read more... ×
Search In
  • More options...
Find results that contain...
Find results in...

Create an account on our board

or login and enjoy all the possibilities

Existing user? Sign In

Sign In



Sign Up

Learn Or Teach

You can learn computer security by practicing in the Dashboard, you can also be taught by a teacher. Or You can teach community members regardless of your specialty, and earn points for each person!

Learn or Teach

The Challenges

The new Challenges page is here. Take advantage of several vulnerable web applications to help train you such as, DVWA, XVWA, Mutillidae. You can also launch an existing or custom virtual machine.

Play Now !

Collaboration Room

The first categories of the forum are rooms that you can create or join in order to participate in events with the other members of the community. You can also create your room to make a teaching request, or attend your teacher's presentation. In this room you can create a private forum, store your information, invite other people etc.

Create Room

Create your club

You can create a club with your friends, earn points in teams. Creating a club gives you access to a team space. There you will have a private forum where you can store files, share information etc. Invite your friends and play together!

Create yours now!

VIP

Several VIP packs are available, understand that the survival of this site depends on it. Of course you can buy this pack with your points won during events. Formulas: Vip Member Vip Teacher Vip student

Buy
News
  • For new users read this
  • Challenges
  • for new users thank you to post in introduction and answer "Accept" on the topic of the rules to have access to the integrity of the forum and receive your Exploit-Code
  • The challenges board is being developed you are likely to encounter some bugs if this is the case report to an administrator.

Cybercriminals target pizza delivery website to concoct personalized spam campaigns

Sign in to follow this  
AdminSec

61 views

Cybercriminals target pizza delivery website to concoct personalized spam campaigns

 

  • The scammers used the website’s content in order to create tailor-made spam campaigns.
  • In one instance, the attackers promoted Xenical, a prescription drug used to treat obesity.

A pizza delivery website has become the latest target of cyberattackers as it was exploited to deliver personalized spam campaigns. This compromised website was first discovered by Sucuri researchers who it using an older version of WordPress. The attackers exploited the website content in order to devise personalized spams. In one instance, they also promoted Xenical, a prescription medication meant for treating obesity.

The big picture

The attackers advertised Xenical in a message filled with hyperlinks on the homepage of the compromised pizza delivery site.

The message begins by mentioning pizza as one of the food products responsible for obesity and then trails with information on Xenical and its availability on a site known as ‘DietXPills’. It also impersonated the pizza company.

Sucuri researchers identified that the server shared by the ‘DietXPills’ website was also used by 46 other sites that allegedly sold medications without prescription.

The message content, which was not encoded, was present in a PHP file of the WordPress-based site. In addition, a malicious WordPress user profile was discovered which was subsequently removed by Sucuri researchers.

Worth noting

The researchers uncovered that the pizza delivery site used an older version of WordPress. “When we received this case, the website had been using outdated software: WordPress version 4.9.6. The most plausible explanation for how the hacker gained access to the site, is that they leveraged the vulnerability to plant their spam content,” they said in the blog.

“We encourage website owners to keep everything in the website up to date, be it plugins, themes, or CMS installations,” advised the researchers

Sign in to follow this  


0 Comments


Recommended Comments

There are no comments to display.

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×