Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Wordpress malware - What is it and how to protect your website.


Published on

Presentation given at Wordcamp London 2017 to raise awareness of Wordpress malware, what it's all about and best practice to prevent sites being sompromised

Published in: Technology
  • Be the first to comment

  • Be the first to like this

Wordpress malware - What is it and how to protect your website.

  1. 1. WordPress Malware Owen Cutajar (@OwenC)
  2. 2. Your lovely WordPress site …
  3. 3. looking not-so-lovely …
  4. 4. According to the FBI “There are only two types of companies: those that have been hacked, and those that will be.” Robert Mueller, FBI Director, 2012
  5. 5. Why? Profit or Propaganda Wordpress is an attractive target Outdated version of WordPress Large surface of attack across plugins/themes
  6. 6. Classes of attacks Targeted attacks Password cracking (brute force / dictionary attacks) DDOS Malware
  7. 7. Some terminology Virus Worm Trojan Horse Botnet Malnet
  8. 8. Types of attacks Defacing Spam Drive-by Downloads Backdoors Malicious redirects and embeds
  9. 9. Defacing
  10. 10. Spam
  11. 11. Drive-By Downloads
  12. 12. Backdoors
  13. 13. Malicious Redirects and Embeds
  14. 14. How? Exploits and vulnerabilities Outdated software Insecure credentials Compromised host
  15. 15. Infection Demo Local Samples Tools: Base64Decoder: Execute PHP:
  16. 16. Cleaning an infected site Manually Wordfence demo
  17. 17. Protecting your site Automatic updates Security plugins External scanning User education Two factor authentication Off-site Backups SSL on login page
  18. 18. References Wordpress Vulnerability Database: Wordfence: Securi: Cloudflare: Me: @OwenC on Twitter, owencutajar on Skype