< BACK TO NEWS
importantSYS.SOURCE: The Hacker News2026-07-10T17:00:02+05:30

Exposed Hacker Server Unveils WP-SHELLSTORM Webshell Campaign Targeting WordPress and Joomla Sites

#WordPress Security#Webshell Attacks#Cybercrime#Vulnerability Exploitation#Hacker Tools

An exposed hacker server revealed the WP-SHELLSTORM campaign, which used webshells and exploit tools to compromise WordPress and Joomla sites through known vulnerabilities. The operation targeted over 1.4 million domains, with 5,700+ confirmed compromises, leveraging tools like SNOWLIGHT and VShell for persistent access.

A cybercrime crew left one of its own servers wide open on the internet for three weeks, and it exposed the operation's inner workings: the hacking tools, the activity logs, and target lists naming more than 1.4 million websites.

Far fewer were actually broken into, but the exposed files showed researchers how a mass site-hacking operation runs from the inside.

The operation, now tracked as

Read original article

*** END OF TRANSMISSION ***

> RYANAIR PASSENGER INJURED AFTER MIDAIR ENGINE FAILURE LEADS TO CABIN WINDOW DAMAGE> LAYLO SEEKS HEAD OF FINANCE FOR SAAS GROWTH> LATE BRONZE AGE COLLAPSE: ARCHAEOLOGICAL INSIGHTS AND HISTORICAL ANALYSIS> UNPATCHED XRING VULNERABILITY IN XQUIC ENABLES REMOTE HTTP/3 SERVER CRASHES> LUMEN TECHNOLOGIES EXPANDS ASSET INVENTORY TO 1.1 MILLION VIA ADVANCED EXPOSURE MANAGEMENT> EXPOSED HACKER SERVER UNVEILS WP-SHELLSTORM WEBSHELL CAMPAIGN TARGETING WORDPRESS AND JOOMLA SITES> EU COMMISSION ALLEGES INSTAGRAM AND FACEBOOK VIOLATE DSA WITH ADDICTIVE DESIGN FEATURES> STUDY REVEALS SECURITY VULNERABILITIES IN 281 FREE ANDROID VPN APPLICATIONS> THE PHILOSOPHY OF INVISIBLE TOOLS IN SOFTWARE DEVELOPMENT> SOPHISTICATED PHISHING CAMPAIGN EXPLOITS MICROSOFT ENTRA PASSKEY ENROLLMENT FOR UNAUTHORIZED ACCESS> RYANAIR PASSENGER INJURED AFTER MIDAIR ENGINE FAILURE LEADS TO CABIN WINDOW DAMAGE> LAYLO SEEKS HEAD OF FINANCE FOR SAAS GROWTH> LATE BRONZE AGE COLLAPSE: ARCHAEOLOGICAL INSIGHTS AND HISTORICAL ANALYSIS> UNPATCHED XRING VULNERABILITY IN XQUIC ENABLES REMOTE HTTP/3 SERVER CRASHES> LUMEN TECHNOLOGIES EXPANDS ASSET INVENTORY TO 1.1 MILLION VIA ADVANCED EXPOSURE MANAGEMENT> EXPOSED HACKER SERVER UNVEILS WP-SHELLSTORM WEBSHELL CAMPAIGN TARGETING WORDPRESS AND JOOMLA SITES> EU COMMISSION ALLEGES INSTAGRAM AND FACEBOOK VIOLATE DSA WITH ADDICTIVE DESIGN FEATURES> STUDY REVEALS SECURITY VULNERABILITIES IN 281 FREE ANDROID VPN APPLICATIONS> THE PHILOSOPHY OF INVISIBLE TOOLS IN SOFTWARE DEVELOPMENT> SOPHISTICATED PHISHING CAMPAIGN EXPLOITS MICROSOFT ENTRA PASSKEY ENROLLMENT FOR UNAUTHORIZED ACCESS