Surge of JavaScript Malware in sites with vulnerable versions of LiteSpeed Cache Plugin
Tags
attack-pattern: Dns - T1071.004 Dns - T1590.002 Ip Addresses - T1590.005 Javascript - T1059.007 Malware - T1587.001 Malware - T1588.001
Show in Graph
Common Information
Type Value
UUID b068e5a4-8453-444f-bb81-a2ad25f06a48
Fingerprint 8e37fd2e955fd6b8
Analysis status DONE
Considered CTI value 0
Text language
Published May 3, 2024, 11:01 a.m.
Added to db Aug. 31, 2024, 1:19 a.m.
Last updated Nov. 2, 2024, 8:51 p.m.
Headline Surge of JavaScript Malware in sites with vulnerable versions of LiteSpeed Cache Plugin
Title Surge of JavaScript Malware in sites with vulnerable versions of LiteSpeed Cache Plugin
Detected Hints/Tags/Attributes 11/1/12
Source URLs
Redirection Url
Details Source https://wpscan.com/blog/surge-of-javascript-malware-in-sites-with-vulnerable-versions-of-litespeed-cache-plugin/
URL Provider
Details Provider Source level domain
Details wpscan.com wpscan.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 73 Blog | WPScan https://blog.wpscan.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 1 
dns.startservicefounds.com
Details Domain 1 
api.startservicefounds.com
Details Domain 1 
cache.cloudswiftcdn.com
Details Domain 12 
wpscan.com
Details IPv4 1 
45.150.67.235
Details IPv4 4 
5.7.0.1
Details IPv4 1 
94.102.51.144
Details IPv4 1 
31.43.191.220
Details Url 1 
https://dns.startservicefounds.com/service/f.php
Details Url 1 
https://api.startservicefounds.com
Details Url 1 
https://cache.cloudswiftcdn.com
Details Url 1 
https://wpscan.com/vulnerability/dd9054cc-1259-427d-a4ad-1875b7b2b3b4