Best Blackhat Forum

Just published today and this looks like something we would ignore purely at our own risk - so I suggest looking into this ESPECIALLY if you've used any NULLED stuff on your site, ever.

This malware threat is not actually 100% new.
Quoting today's Zdnet article:

Quote:WP-VCD has been around since at least February 2017

Source:

This whitepaper is attached here:

Quote:WP-VCD: The Malware You Installed On Your Own Site
Author: Mikey Veenstra, GWAPT
Publication Date: November 4, 2019

Wordfence writeup:

This site plugs its own tool that claims to remove it safely:

And their free (??) plugin is here:

But their site has info that shows it is not free - or that it needs their service for cleaning ??:

This very messy site claims to have good removal info; I didn't see it as very encouraging though:

This site is less messy, but not more encouraging:

What I've been saying right along about all the 3rd party NULLED krap shared here on BBHF from untrustworthy sites is COMPLETELY affirmed by this thread, so I suggest that folks actually read my sig !!

There should be some free tool for cleaning this and if/when I find any I'll post more here.

Best Wishes to All.

Thanks for the warning.!

Thanks will read with care. Reps

This may be so very serious of a threat - I wish that admins would pin it so that more folks might see the danger of it !!

Super service to us all smithnowt, thanks for the heads up.

More people need to know about this. Great share!

Hi and thanks.
Add this videos to your thread too:




Cheers

Wonderfully helpful info Appie13 - thanks for that addition here !!
(+Rep given, as always.)

(12-28-2019 11:29 AM)smithnowt Wrote: [ -> ]Wonderfully helpful info Appie13 - thanks for that addition here !!
(+Rep given, as always.)

You welcome

Thanks for the awareness