Hackers use sites are not set until the end CMS WordPress
By Prempal Singh
Company Wordfence experts have discovered a new type of web-attacks, in which attackers use unfinished WordPress installation.
That is, the attacks are based on sites where users have already downloaded the content management system (CMS) WordPress, notes and do not install it until the end. Such resources are open for external connections, and anyone can access the setup panel and complete the CMS installation process.
According Wordfence, from late May to mid-June of the current year has increased dramatically the number of scans the Internet for any WordPress installation with the installation file. The researchers found at least one hacker to access the site, where the CMS has been set to the end. Unknown downloaded username and password of their own database, and complete the installation process. Thus, he secured the opportunity to manage your site through the newly created administrator account and through the file editor to implement and execute malicious code to gain control over a foreign server. The attacker also established its own plug-in to execute malicious code.
Along with the increasing number of scans has increased the number of attacks on the websites under the WordPress control in June 2017. Most often the attacks were carried out with IP-addresses in Russia, Ukraine and the United States.