djbaxter

Administrator
Administrator
Moderator
Joined
Jun 28, 2012
Messages
3,512
Reaction score
1,659
Three Plugins Backdoored in Supply Chain Attack
by Dan Moen , Wordfence.com
December 27, 2017

In the last two weeks, the WordPress.org repository has closed three plugins because they contained content-injection backdoors. ?Closing? a plugin means that it is no longer available for download from the repository, and will not show up in WordPress.org search results. Each of them had been purchased in the previous six months as part of the same supply chain attack, with the goal of injecting SEO spam into the sites running the plugins.

Duplicate Page and Post

URL: https://wordpress.org/plugins/duplicate-page-and-post/
Active Installs: 50,000+
Current Owner: pluginsforwp (joined WordPress.org July 10, 2017)
Sold Date: August 2017
Removed from WordPress.org date: December 14, 2017
The original plugin author responded to our request for information on the sale of the plugin, confirming that they did indeed sell the plugin to a person named Daley Tias in the summer of 2017. However, we were unable to find any record of a person name Daley Tias online. The original plugin author has not shared the purchase solicitation message with us at the time of this writing.


No Follow All External Links

URL: https://wordpress.org/plugins/nofollow-all-external-links/
Active Installs: 9,000+
Current Owner: gearpressstudio (joined WordPress.org March 17, 2017)
A company called Orb Online in West Sussex, UK made the payment for the plugin. A quick Google search leads us to their website: ?Orb Online is a UK based digital marketing agency, specialising in SEO, eCommerce and Magento web development.?

WP No External Links

URL: https://wordpress.org/plugins/wp-noexternallinks/
Active Installs: 30,000+
Current Owner: steamerdevelopment (joined WordPress.org June 29, 2017)
The same person (or alias), Daley Tias, purchased both the Duplication Page and Post and WP No External Links plugins. Payment was received from Orb Online, with contact email address of info@orbonline.co.uk. This is also the same company that paid for the No Follow All External Links plugin.


Read more...
 
Similar threads
Thread starter Title Forum Replies Date
djbaxter WordPress vulnerability, all versions: Check your Author and higher role permissions Websites, Software, and Security 0
Linda Buquet Warning: Google Blocks Thousands Of WordPress Sites - Malware Attack - Check Clients Websites, Software, and Security 2
B "Check Insurance Info" Link In GMB - How'd it get there? Google My Business & Google Maps 2
djbaxter checking nofollow Admin Stuff 1
A Best Method to Check sites All Scenarios? Websites, Software, and Security 1
Justin Mosebach How to check SERPs for presence of a map pack in bulk? Organic SEO 4
Caroline S Yelp Check-in Offers? Local Reviews 2
Ellen Sanity Check - GMB Posts Appearance Google Maps Help & Support for Google Local 1
AndySimpson Check your GMB Dashboard and check your competitors posts...any spam? Google My Business & Google Maps 2
Rich Owings Yelp now filters reviews with check-ins Local Reviews 10
Oliver Keates Local Search Check list for 2019 Local Search 4
S Checking out for services Recycle Bin 0
W Checking The Box "I Also Serve Customers At This Business Address" Service Area Businesses 15
Dan Foland Dan from Columbus, OH checking in Introduce Yourself - We're Friendly 6
whiz Consultants: Competitive Analysis for Local Ranking - What are top factors you check? Consultant's Corner 19
Linda Buquet Emulate Location to Street Level to Check Google Local Rankings - Chrome Extension Local SEO Tools & Software 2
Durandl How to check business citations for businesses Located in France Local Search 1
Linda Buquet To All the Google My Business Data Geeks - Check your Dashboards, Cool Update Google My Business & Google Maps 1
Gsmithmike Best Tool To Check Keyword Ranking Locally? Local Search 4
M Tool to check Local SERP results from different locations Local Search 12
HurricaneK8 FACEBOOK Ads Hack Warning: Check your ads accounts! Marketing 5
Linda Buquet A Horror Story: Check Your Google Local Listings - Don't Let This Happen to You Spam on Google 16
M Google Maps API to check my local Ranking? Local Search 2
J So I was checking my site on Google Webmaster Tools Local Search 2
A Google Local Ranking Check Tool Local SEO Tools & Software 13
Linda Buquet Cool Trick/Tool for Cross Checking the Crazy Local Stack Changes & More Local SEO Tools & Software 3
Linda Buquet ▶ How To Check Citations With Moz Local - Tuesday Video Tip from Greg Gifford Citations 4
D Check Ins on Facebook Local Search 1
Gsmithmike What is the best way to check local ranking for a keyword? Local Search 26
Linda Buquet 12 Things To Check In Your Local Homepage SEO Audit + 2 Warnings Local Search 4
G Anybody know how to check for duplicate citations? Citations 9
G How to check if a website has a KML sitemap? Help & Support for Google Local 7
G Looking for a cleaning service? Check out American Star Cleaning Inc.! We give free e Recycle Bin 0
Broland Hack to Check for Google Local Penalties Google My Business & Google Maps 39
Linda Buquet No Verifcation Check Mark? New Type of Page OR??? Google My Business & Google Maps 2
Marie Ysais Marie Checking Out Mod Squad 3
F BUG Warning - Check Address to be Sure Still Hidden Service Area Businesses 57
F BUG Warning - Check Address to be Sure Still Hidden Service Area Businesses 57
Linda Buquet SMB Warning: Check your Google+ Local Page - Don't Let This Happen to You! Google My Business & Google Maps 9
Linda Buquet New from Google "Places Bumps" Check-ins Going Away? Local Search 2
Simon James Just to check my understanding of the current state of play for multiple locations... Help & Support for Google Local 17
djbaxter IP check upgraded Admin Stuff 1
Chris Ratchford Check in Services- thoughts? Local Search 0
rich_marlatt What Wordpress plugins do you recommend for SEO and Schema Markup? Ask a LocalU Expert [PRIVATE] (LocalU) 4
djbaxter WordPress: Contact Form 7 File Upload Vulnerability Websites, Software, and Security 0
djbaxter WordPress: The NoneNone Brute Force Attacks: Currently Active Websites, Software, and Security 0
djbaxter New features in WordPress 5.6 Websites, Software, and Security 0
djbaxter PHP 8: What WordPress Users Need to Know Websites, Software, and Security 0
djbaxter Speed Test for WordPress sites Websites, Software, and Security 1
djbaxter New WordPress Toolkit from cPanel Websites, Software, and Security 0

Similar threads

Login / Register

Already a member?   LOG IN
Not a member yet?   REGISTER

Most UpVoted Answers

LocalU Podcasts

  Promoted Posts

New advertising option: A review of your product or service posted by a Sterling Sky employee. This will also be shared on the Sterling Sky & LSF Twitter accounts, our Facebook group, LinkedIn, and both newsletters. More...
Google Product Exert


Top Bottom