Author Topic: Only Spamhaus to flag Flubot spam?  (Read 1060 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33585
  • malware fighter
Only Spamhaus to flag Flubot spam?
« on: October 29, 2021, 03:48:36 PM »
Re: https://urlhaus.abuse.ch/url/1726424/
Re: https://sitecheck.sucuri.net/results/https/mantramol.com/u/?q=redacted
Zie: https://www.virustotal.com/gui/url/7700260d59d6f059e3e7b6e3f415ce7471386c2b655869f4c19f89e9587edc76?nocache=1

Issues found during a high level analysis of the target site. It is recommended that further active scanning be undertaken for a more accurate assessment. Word Press CMS -The following plugins were detected by reading the HTML source of the WordPress sites front page.

Plugin   Update Status   About
litespeed-cache 4.4.2   Warning   latest release (4.4.3)
https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration
Plugins are a source of many security vulnerabilities within WordPress installations, always keep them updated to the latest version available and check the developers plugin page for information about security related updates and fixes.

Directory Indexing
In the test an attempt was made to list the directory contents of the uploads and plugins folders to determine if Directory Indexing is enabled. This is a common information leakage vulnerability that can reveal sensitive information regarding your site configuration or content.

Path Tested   Status
/wp-content/uploads/      enabled
/wp-content/plugins/      disabled
Directory indexing is tested on the /wp-content/uploads/ and /wp-content/plugins/ directories. Note that other directories may have this web server feature enabled, so ensure you check other folders in your installation. It is good practice to ensure directory indexing is disabled for your full WordPress installation either through the web server configuration or .htaccess.

polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)
« Last Edit: October 29, 2021, 06:02:45 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37182
Re: Only Spambot to flag Flubot spam?
« Reply #1 on: October 29, 2021, 05:41:33 PM »
Quote
Only Spambot to flag Flubot spam?
you mean Spamhaus ?


Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33585
  • malware fighter
Re: Only Spamhaus to flag Flubot spam?
« Reply #2 on: October 29, 2021, 06:05:25 PM »
Hi Pondus,

You saved my posting, thanks an awful lot for setting that right.  ;)
Hard a hard days' work and rose at four in the morning.

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33585
  • malware fighter
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!