I ran a few scans on my WordPress Blogs using this utility since yesterday and today.
I’ve found out these malware are targeting legitimate WordPress Plugins and its javascript files in the WordPress Repository, even if they were installed via admin dashboard. So I think the problem might lie in the hosting or buggy software.
So far, the affected plugins I have discovered are Google Analyticator version 6.2, Jetpack version 1.2.2, SexyBookmarks version 4.0.6.4, Studiopress Genesis Framework 1.7.1, previous versions of Joomla 1.5.25 core files and plugins.
The solution to remedy these are to temporarily disable it until a new patch is released, update your WordPress Core files, re-upload templates and javascript files of plugins and modules.
Check and scan your site using Sucuri SiteCheck it’s free and shows you affected plugins too.
Credits:
Sucuri Security
