Home > Website Security, WordPress Tips and Tricks > Was the Internet Systems Consortium Site Infected by the new WPcache-Blogger Malware

Was the Internet Systems Consortium Site Infected by the new WPcache-Blogger Malware

December 29, 2014

Potentially very bad news. It looks like the Internet Systems Consortium (ISC) website was hacked by a new strain of malware on December 22nd. What is most worrisome is that they are a group responsible for the open-source Berkeley Internet Name Domain (BIND) program. BIND is one of the most popular DNS software on the planet and is certainly the most used DNS program on the Unix and Linux systems that make up most of the Internet’s fundamental infrastructure.

The security group Cyphort discovered the hack but didn’t mention how ISC was hacked, other than that is was through their public facing WordPress site. But some of the source code they showed in their article contained an injected iframe pointing to theme(dot)wpcache-blogger(dot)com. This domain was confirmed as a malframe by Daniel Cid at the web security firm Sucuri on Christmas eve.

Website Security, WordPress Tips and Tricks

  1. No comments yet.
  1. No trackbacks yet.