In recent months, there has been an up tick in malicious "fake" plugins using a variety of methods to infect and control websites. Popular plugins are being faked by malicious actors to provide a facade of a plugin which is designed to hack your website or use your online resources to mine crypto currency. Once these attackers have penetrated your security by having the plugin installed they can deploy a variety of malicious codes to create entry points or exploit resources. Plugins acting as a backdoor are extremely dangerous if not caught as the attacker just needs to time to brute force your login and passwords.
Always ensure you are downloading official software and code snippets as it only takes one line of malicious code to expose your entire online ecosystem to infection. Check how much resources your website is using (CPU, Memory, Storage, Hits, etc) and compare usages to a baseline to verify that no suspicious activity is taking place.
Articles:
https://blog.sucuri.net/2019/10/fake-updraftplus-plugins.html
https://blog.sucuri.net/2019/10/cryptominers-backdoors-found-in-fake-plugins.html
Powered by WHMCompleteSolution
