Important Vulnerability on Advanced Custom Fields Plugin for WordPress

Recently Imunify360 malware researchers received a couple of requests by the community to examine the “Quick Page/Post Redirect Plugin”. The plugin is widely used roughly in ~100k installations. This investigation will expose techniques used by plugins to inject ads passively into websites, in most of the cases the website’s owners do not even know or allow it. It will answer questions made by WordPress' broader community which didn’t have a chance to have proper feedback on forums.

We are excited to announce that Cloudways, a premier managed hosting platform, a part of DigitalOcean Holdings, Inc., has chosen Imunify360 to enhance security across its entire server fleet. This decision by Cloudways to procure our top-tier security solutions underscores a significant commitment to providing superior protection for all hosted websites, across various platforms.

The Imunify360 team is proud to announce that Liquid Web, a leading provider of premium hosting for small to midsize businesses, has launched Imunify360 PLUS catered to specific needs of LiquidWeb. This advanced malware detection and remediation solution delivers proactive defense against emerging threats, reduces potential data breaches, improves website performance, and ensures compliance with industry standards.

The digital landscape is constantly evolving, and with each advancement, the necessity for robust cybersecurity measures becomes more apparent. In an upcoming webinar titled "AI & Cyber Defense: The Future of Hosting" co-led by Imunify Security and Hivelocity, participants will gain invaluable insights into the latest innovations in cybersecurity and hosting.

On April 1st, Google will implement a new pricing model that will significantly reduce the free tier usage of reCAPTCHA and introduce new prices for the reCAPTCHA Enterprise service. Although reCAPTCHA offers decent bot protection, it is not without its flaws, yet remains quite effective. However, we at Imunify360 have decided to discontinue its use within our protection suite. This decision stems not solely from the new costs associated with its use, but more importantly, because we have developed our own bot protection technology, SplashScreen, which our recent research has shown to be as effective as Google’s reCAPTCHA.

UPD: WebShield 1.25.0 was first released to Beta on March 26 with included updates DEF-27382 PoC for the Get rid of reCaptcha epic/DEF-27508 Test&merge get rid of reCaptcha to master.
Starting from WebShield the 1.25.0 release, the Imunify360 JS challenge is used for the requests from the IPs that were graylisted.

Duplika, an 18-year-old dedicated hosting provider, faced a critical challenge: escalating cyber threats compromising client trust. IP blocks, outdated security measures, and compromised sites threatened their reputation until Imunify360 entered the fray.

At Imunify, we’re committed to empowering businesses with cutting-edge security solutions. Discover how Snel.com, renowned for being "Your Friendly Hosting Provider" from the Netherlands, revolutionized their server management services with Imunify360.

Imunify360 researchers have identified a growing number of malicious redirects on Joomla CMS.

In this post, discover how Imunify360 is leading the charge against a sophisticated cyber threat targeting Joomla CMS. This post delves into the rise of malicious redirects caused by a deceptive fake-plugin, capable of injecting harmful scripts into websites. Learn about the insidious mechanism of this threat, which targets unsuspecting visitors with phishing and malware, and how Imunify360's advanced security measures, including its proactive scanner and comprehensive defense system, offer robust protection against such evolving cyber dangers. Protect your Joomla site with Imunify360's integrated antivirus, firewall, and WAF, ensuring the safety and integrity of your online presence.

We are thrilled to share that Webuzo, a leading web hosting platform that simplifies the management of cloud or dedicated servers, has officially integrated ImunifyAV as its default antivirus software, recognizing the importance of top-notch security for its users.

Imunify360 researchers have recently found a wave of attacks exploiting a known vulnerability in Chamilo LMS (CVE-2023-34960) to escalate and execute arbitrary commands. Chamilo is an e-learning platform, also called Learning Management Systems (LMS), widely used by Universities and NGOs with a total of ~85k installations.