Malware using the REST API for Remote Code Execution

Fioravante Souza posted: " This week, Jetpack Scan flagged the license file of a premium extension, and the customer reached out to ask us for more information about it. So I put my detective hat on to investigate. It is not unusual to stumble upon suspicious code that only end" New post on Jetpack: WordPress Security, Performance, and Growth Malware using the REST API for Remote Code Execution by Fioravante Souza This week, Jetpack Scan flagged the license file of a premium extension, and the customer reached out to ask us for more information about it. So I put my detective hat on to investigate. It is not unusual to stumble upon suspicious code that only ended up being an overprotective developer trying to hide code through common obfuscation methods. This is even more common when analyzing license management code. But in this case, it turned out to be something a bit more sinister. Read more of this post Fioravante Souza | August 27, 2021 at 10:00 am | Categories: Vulnerabilities | URL: https://wp.me/p1moTy-xXd Unsubscribe to no longer receive posts from Jetpack: WordPress Security, Performance, and Growth. Change your email settings at Manage Subscriptions. Trouble clicking? Copy and paste this URL into your browser: http://jetpack.com/2021/08/27/malware-using-the-rest-api-for-remote-code-execution/ Thanks for flying with WordPress.com