The Revolution Slider Plugin has been identified as the possible cause for Panama Papers leak, one of the biggest data leaks to date, involving over 100 news publications and 2.6 terabytes of information, Wordfence reported yesterday. According to Wordfence, the Mossack Fonseca (MF) website is currently running a vulnerable version of the revslider plugin which grants a remote attacker a shell on the web server, but “have now put their site behind a firewall which would protect against this vulnerability being exploited.” All versions of the plugin from 2.1.7 to 3.0.95 are vulnerable to the attack. Wordfence theorized that MF […]
Panama Papers Leak May Have Been Due To Outdated WordPress And Drupal Sites
The Panama Papers leak is one of the biggest data leaks to date, involving over 100 news publications and 2.6 terabytes of information. Forbes discovered the Panamanian law firm that was hacked was using a site run on a three-month-old version of WordPress. Forbes also noted that the portal customers use to access their data was allegedly running a three-year-old version of Drupal, and the site contained at least 25 vulnerabilities. WP Tavern, however, noted that Forbes’ findings aren’t exactly correct. According to the article, “While looking at the site today, I found that the firm’s WordPress-powered site is currently […]
2 Comments