Cloud security startup Wiz is warning of a large-scale redirect campaign in which thousands of websites aimed at an East Asian audience were compromised using legitimate FTP credentials.
In many cases, attackers were able to obtain highly secure auto-generated FTP credentials and use them to attack victims’ websites to redirect visitors to adult content. The campaign, believed to have been ongoing since September 2022, compromised at least 10,000 websites, many owned by small companies and some operated by large corporations.
The differences between hosting providers and technology stacks make identifying a common entry point difficult, says Wiz. In some cases, JavaScript code was inserted directly into existing files on the compromised server.
Read more: Thousands of Websites Hijacked Using Compromised FTP Credentials
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.