Summary

Unknown threat actors have compromised the update system for the Smart Slider 3 Pro plugin, distributing a backdoored version to users. This incident affects the WordPress version 3.5.1.35 of the plugin, which is widely used across WordPress and Joomla platforms.

Key Points

• The compromised update impacts Smart Slider 3 Pro version 3.5.1.35.
• The attack was identified by WordPress security company Patchstack.
• Smart Slider 3 is a popular plugin with over 800,000 active installations.
• The attack involves a backdoor being installed via a poisoned update.
• The update system was hijacked through compromised Nextend servers.

Analysis

This incident highlights the critical importance of securing update distribution channels, as they can be exploited to deliver malicious payloads to a large user base. With over 800,000 installations, the potential impact of this backdoor is significant, posing a serious risk to website security and user data integrity.

Conclusion

IT professionals managing WordPress and Joomla sites should immediately verify the integrity of their Smart Slider 3 Pro installations and ensure they are not running the compromised version 3.5.1.35. Regular monitoring and validation of plugin updates are recommended to prevent similar incidents.