Important Vulnerability on Advanced Custom Fields Plugin for WordPress

Earlier this month, we introduced the Imunify Security WordPress Plugin — designed to make the powerful protection of Imunify360 visible right inside the WordPress Admin Dashboard.

This enhancement allows our customers to view the exact differences (in unified format diff) between infected and cleaned files.

If your customers don’t see the security you provide — do they know it’s even there? That’s the challenge we set out to solve with the new Imunify Security WordPress Plugin.

We’re excited to announce our upcoming webinar in collaboration with Cloudways, focused on the powerful Malware Scanner. This session will delve into advanced website security measures and the unique features that set Imunify360 apart from traditional plugin scanners.

Malicious redirects are one of the most dangerous attacks a website can face. They undermine the integrity of legitimate sites, not only damaging their functionality but, more importantly, eroding user trust. In these attacks, users are unknowingly redirected to third-party malicious websites, which are designed to steal sensitive data, spread malware, or engage in phishing activities.

Recently Imunify360 malware researchers received a couple of requests by the community to examine the “Quick Page/Post Redirect Plugin”. The plugin is widely used roughly in ~100k installations. This investigation will expose techniques used by plugins to inject ads passively into websites, in most of the cases the website’s owners do not even know or allow it. It will answer questions made by WordPress' broader community which didn’t have a chance to have proper feedback on forums.

We are excited to announce that Cloudways, a premier managed hosting platform, a part of DigitalOcean Holdings, Inc., has chosen Imunify360 to enhance security across its entire server fleet. This decision by Cloudways to procure our top-tier security solutions underscores a significant commitment to providing superior protection for all hosted websites, across various platforms.

The Imunify360 team is proud to announce that Liquid Web, a leading provider of premium hosting for small to midsize businesses, has launched Imunify360 PLUS catered to specific needs of LiquidWeb. This advanced malware detection and remediation solution delivers proactive defense against emerging threats, reduces potential data breaches, improves website performance, and ensures compliance with industry standards.

The digital landscape is constantly evolving, and with each advancement, the necessity for robust cybersecurity measures becomes more apparent. In an upcoming webinar titled "AI & Cyber Defense: The Future of Hosting" co-led by Imunify Security and Hivelocity, participants will gain invaluable insights into the latest innovations in cybersecurity and hosting.

On April 1st, Google will implement a new pricing model that will significantly reduce the free tier usage of reCAPTCHA and introduce new prices for the reCAPTCHA Enterprise service. Although reCAPTCHA offers decent bot protection, it is not without its flaws, yet remains quite effective. However, we at Imunify360 have decided to discontinue its use within our protection suite. This decision stems not solely from the new costs associated with its use, but more importantly, because we have developed our own bot protection technology, SplashScreen, which our recent research has shown to be as effective as Google’s reCAPTCHA.

UPD: WebShield 1.25.0 was first released to Beta on March 26 with included updates DEF-27382 PoC for the Get rid of reCaptcha epic/DEF-27508 Test&merge get rid of reCaptcha to master.
Starting from WebShield the 1.25.0 release, the Imunify360 JS challenge is used for the requests from the IPs that were graylisted.