How Can a Website Be Affected by Malware?

At present, having a website is a must, whether for doing business, creating a personal blog, building online media, or just posting a portfolio. However, there is still the possibility of a website being attacked by malware. So, how can a website be attacked by malware?

Given that until now there are still many people who already have websites but don’t care about their use, there are still many websites that are easy targets for hackers (hackers) to insert malware.

What Is Malware?

Malware stands for Malicious Software, which is software designed to harm, infiltrate, or damaging a system, either on a computer or a website.

 

In this article, you will learn how websites can be attacked by malware.

Types of Malware on the Website

Before learning how websites can be attacked by malware, you need to know first, what types of malware can attack your website.

Backdoor

Backdoor is a type of malware that “lodges” on websites. Usually, backdoor hackers use a shell-backdoor scriptThis malware is planted by hackers who have successfully entered your website and created a “back door” so that your website can be accessed by the hacker anytime without your knowing it. Here’s an example of a shell-backdoor.

how websites can be attacked by backdoor malware

PopUp Ads Malware

If you use the CMS WordPress and frequently use nulled ( free ) themes or plugins that are downloaded from unofficial websites, there is a chance that you may have experienced an ad that suddenly appears on your website, even though you don’t monetize your website with Google Ads. This malware is a type of injected malware, so the virus infection has originated from the script so that when deployed on the website, the malware will work automatically.

These ads work when you open an infected website which will then be redirected to a foreign website.

Phishing

This is also a form of malware. This type of malware is dangerous because it can be used for scamming or fraud in the form of stealing user data. Some examples of phishing such as login page to internet banking, displaying a login form but not actually from an official bank. If you are not vigilant, the data you enter can be logged into hacker logs and your data could be misused.

Spamming

This type is one of the most common threats to website users on the internet. How not, if one of the email accounts registered on your hosting account has been hacked, hackers can send emails in bulk and repeatedly to various emails. Usually, hackers insert scam emails to get the desired data from their targets.

Ransomware

 

Several years ago there was viral news about Ransomware that attacked nearly 200 thousand computers in 150 countries around the world, namely “Wannacry”, which ultimately resulted in millions of dollars in losses. This malware usually denies access or denies access to a computer that is affected by Ransomware. Usually, victims are asked to send a certain amount of money in the form of dollars or bitcoin to redeem the data on their computer that is locked by hackers, including data on the website.

Botnet Attack

This type is very different from some of the types above. Because, the way this malware works is to carry out attacks such as DDoS, spread malware to other websites, even spam, and scams. Botnet attacks work with a script that is embedded in the server, by using a cronjob, the botnet can run automatically according to the time set in the cronjob.

How Can a Website Be Affected by Malware?

There are many causes of the website can be attacked malware, one of them if you use WordPress CMS is when you download a theme from a website that is not official. One of the dangerous free theme provider websites is downloadfreethemes. This is because the website offers many premium themes, but has already been injected with malware scripts.

wp-vcd.php on WordPress

Many have complained about this script. As you know, the wp-vcd.php script is not a native or core script from WordPress, but it is a malware script. Below is an example of its content.

$ install_code = ‘c18615a1ef0e1cd813b388b4b6e29bcdc18615a1ef0e1cd813b388b4b6e29bcd [… ..] $ install_hash = md5 ($ _ SERVER [‘ HTTP_HOST ‘]. AUTH_SALT); $ install_code = str_replace (‘{$ PASSWORD}’, $ install_hash, base64_decode ($ install_code));

Some scripts are encoded (encrypted) because malware scripts are always encrypted first.

functions.php in the Themes Directory.

Besides wp-vcd.php, there are also functions.php in the themes directory that is used. You can see that the following script is linked to wp-vcd.php. 

<? php

if (isset ($ _ REQUEST [‘action’]) && isset ($ _ REQUEST [‘password’]) && ($ _REQUEST [‘password’] == ‘f98cd901d7551a69caf41ba758a7c972’))

{

$ div_code_name = “wp_vcd”;

switch ($ _REQUEST [‘action’])

{

[……]

$ div_code_name = “wp_vcd”;

$ funcfile = __FILE__;

if (! function_exists (‘theme_temp_setup’)) {

    $ path = $ _SERVER [‘HTTP_HOST’]. $ _SERVER [REQUEST_URI];

    if (stripos ($ _ SERVER [‘REQUEST_URI’], ‘wp-cron.php’) == false && stripos ($ _ SERVER [‘REQUEST_URI’], ‘xmlrpc.php’) == false) {

However, you can ward off these dangerous attacks by using Imunify360 . Because, Imunify360, which you can get with the purchase of cloud hosting from Dewaweb, will detect malware and immediately quarantine the dangerous files automatically.

Conclusion

After knowing how websites can be attacked by malware, from now on you have to be more careful when doing your activities on the website and be more vigilant about the threat of hacker attacks or malware attacks.

One important thing is, avoid downloading themes from unofficial websites like the example above. Because, of course, you know what problems will occur according to the type of malware.

Fortunately, all cloud hosting accounts on Dewaweb are protected by Artificial Intelligence (AI) based security technology facilities, namely Imunify360. However, this security protector cannot always be a benchmark, if the website owner does not care about data security on his website. We hope you are not one of them.

Come on, care about website security and improve your website security with various security features at Dewaweb. Thus the following article, don’t hesitate to leave topic ideas that you want to read on the Dewaweb blog. Hope this article helps!

1 thought on “How Can a Website Be Affected by Malware?”

  1. hello there and thank you in your information ?I抳e certainly picked up anything new from right here. I did alternatively experience several technical points using this website, since I experienced to reload the site a lot of times previous to I could get it to load correctly. I had been considering in case your hosting is OK? No longer that I’m complaining, however sluggish loading cases instances will very frequently affect your placement in google and could injury your high quality ranking if advertising and ***********|advertising|advertising|advertising and *********** with Adwords. Well I am adding this RSS to my email and could glance out for a lot extra of your respective interesting content. Ensure that you update this again very soon..

Leave a Comment

Your email address will not be published.