TeslaCrypt Ransomware Campaign Extends from WordPress to Joomla Sites

  • 0 Replies

Offline Bugbatter

  • Microsoft® MVP
  • Administrator
  • Diamond Member
  • 10660
A vicious ransomware-pushing campaign that started in early February has evolved, and the criminals behind it are also using compromised Joomla sites, not just WordPress.

Brad Duncan, security researcher for Rackspace, has come across this new kink in the campaign's mode of operation after he discovered Joomla sites that exhibited the same signs of infection as first spotted by Sucuri researchers at the start of the month.


Microsoft MVP Consumer Security 2006-2016
Microsoft Windows Insider MVP 2016-