Community news and analysis: April 2014

Posted on April 24, 2014 - 15:09 by ccondon

April news from around our partner community includes updates to several major malware variants, two new vulnerability disclosure programs, and a critical security update for the popular Jetpack WordPress plugin. 

Malware analysis

Facebook webinject leads to iBanking mobile bot (ESET)

Plugin prevalence on infected vs. normal WordPress sites

Posted on April 9, 2014 - 12:54 by ccondon

Our research team recently completed a study that examined the popularity of certain plugins on infected WordPress sites. This particular study didn't yield a statistical difference between plugin distributions on infected WordPress sites and the general population of WordPress installs. However, our team noted that a previous study of theirs (not for StopBadware) with data from other compromised websites did show a difference. In this prior study, they also found a statistically different distribution of plugin version than their control set.