Malicious WordPress Redirect Campaign Attacking Several Plugins

Over the past few weeks, WordFence have reported an active attack targeting a selection of new and old WordPress Plugin Vulnerabilities. these attacks see to maliciously redirect traffic from victims website to a number of potentially harmful locations.

Today we assisted a company that was a target of this Malicious Redirect Campain. It shows while you think it might not happen to you, the chances are still quite high. They are not targetting ‘you’ they are just trying to scan the web for loop holds to add their redirects. This particular case redirected ALL links to another website, including the backend login link.

Current Plugins that have been targeted:

NicDark Plugins – Unauthenticated Arbitrary Options Update
- Though several individual plugins are affected, the vulnerability is the same across each and they are covered by a single firewall rule.
- Affected plugin slugs are prefixed with nd-. Example plugins include Components For WP Bakery Page Builder (slug: nd-shortcodes), Booking (slug: nd-booking), Travel Management (slug: nd-travel), etc.
- Firewall rule released for Premium users on July 30, 2019
- Available for Free users starting August 29. 2019
Simple 301 Redirects Addon – Bulk Uploader <= 1.2.5 – Unauthenticated Options Update
- Firewall rule released for Premium users on August 6, 2019
- Available for Free users starting September 5, 2019
Bold Page Builder
Blog Designer
Live Chat with Facebook Messenger
Yuzo Related Posts
Visual CSS Style Editor
WP Live Chat Support
Form Lightbox
Hybrid Composer
WP Private Content Plus
WP Mail SMTP by WPForms
All former NicDark plugins (nd-booking, nd-travel, nd-learning, et. al.)

A list of IP addresses you should block if you are using free security software (or premium)

IP address causing most of the issues: 104.130.139.134

Additional IP addresses to block:

192.99.38.186
51.38.69.87
62.210.252.196
164.132.44.97
159.203.81.46
217.182.95.250
51.255.43.81
37.187.198.246
54.36.246.232
45.55.152.56
198.199.100.240
162.241.175.243
188.213.175.168
45.40.143.13
188.213.166.219
192.169.227.95
193.70.2.138
149.202.75.164
192.169.157.142
104.238.97.201

Vulnerable plugins have patch updates available for updates. We recommend updating any of these plugins on this list as soon as possible.

What can you do to minimise the chances of an attack?

1. Keep your website up to date – Theme Files, Plugins and WordPress versions. We recommend you do this weekly or at a minimum once a month. If you need assistance with this so you don’t have to worrk about it, we have website care plans available: https://smartrobbie.com.au/website-maintenance/

2. Set up a Sucuri Firewall – Sucuri is a great service. They can your site every 12 hours for any malware and send reports. They also have a firewall which blocks out any potential hacking. You can set the firewall to only allow backend access to approved IP addresses. Prices start at $199/year US – https://sucuri.net/. It’s a highly recommended service which we use in the event of any hacks. They are very efficient, remove the hack quickly and continue to monitor the site for the life of the plan. If you are hacked, get an account today and they will fix it for you.

Set up a free trial Sucuri firewall here:

Free Trial Firewall

3. WordFence Premium – Are you using the Free version of WordFence? We highly recommend upgrading to the Premium version:

Receive real-time Firewall and Scan engine rule updates for protection as threats emerge
Real-time IP Blacklist blocks the most malicious IPs from accessing your site
Country blocking
IP reputation monitoring
Schedule scans to run more frequently and at optimal times
Access to Premium Support
Discounts for multi-year and multi-license purchases

Upgrade directly with Wordfence here ($99US/year)
https://www.wordfence.com/zz2/wordfence-signup/

Or if you prefer we can purchase a license for you, install and configure all the settings for the same price ($99/US > $147AU): https://smartrobbie.com.au/product/wordfence-premium/

4. Strong passwords – Make sure all your passwords are strong – if in doubt change them today.

5. Run a virus scan on your computer. There are multiple options that you can choose, including BitDefender, Kaspersky, Norton and Sophos. We also recommend looking at additional tools to protect your desktop, like Malwarebytes (Windows and Mac) and CleanBrowsing (DNS-based).

6. Keep backups of your site – there are a number of backup options for you. Not all hosting providers have automatic backups. Sample backup options: UpdraftPlus, BackupBuddy or you can get our offsite backup plan: https://smartrobbie.com.au/wordpress-backups/

Additional Reading on this specific attack and General information on keeping your site safe:

Ongoing Malvertising Campaign Evolves, Adds Backdoors and Targets New Plugins

Malicious WordPress Redirect Campaign Attacking Several Plugins

Critical ‘Backdoor Attack’ Warning Issued For 60 Million WordPress Users

Steps to a Safe and Clean Website

How to keep your WordPress site updated

WORDPRESS SECURITY – HOW TO SECURE A WORDPRESS WEBSITE

Leave a Comment Cancel Reply

WordPress Website Design Agency based in Seaforth, Northern Beaches.

WORDPRESS SERVICES

WORDPRESS RESOURCES

OUR COMPANY

Google Rating

5.0

Based on 45 reviews

Smart Robbie – WordPress Website Design

5.0

review us on See all reviews

Brushwood Fencing Narelle Warren

1712631022

My Company and other Companies I own have used Robyn on several occasions for our web site, from entire new sites to updating existing sites. I can highly recommend Robyn and her team as true professionals !

Ocean Underwriting

1698876401

We recently engaged Smart Robbie to create and launch our website. We chose SmartRobbie because the approach and vibe were on the same page as us, plus – Robyn is a technical genius, and we LOVE supporting small businesses. Robyn understood what we needed from the very outset and was able to deliver what we think is an excellent website. We found working with SmartRobbie to be incredibly easy, Robyn was always on hand to chat through our needs/wants, and never made us feel like we were asking a silly question! we highly recommend SmartRobbie to anyone looking to build a modern website with a smooth user experience. Thank you, Robyn!

Gina McClement

1697363585

I recently engaged Smart Robbie to design and build a new website for my counselling and psychotherapy business Living In Bloom. Working with Smart Robbie was excellent and easy. Clear scope, agreement and costs upfront. I really love my design, my vision was translated well, my brand understood and Smart Robbie’s recommendations, technical knowledge and skills are outstanding. Smart Robbie will continue to be a highly valued business partner and I recommend them highly for website design and build and a strong tech knowledge about so many things beyond just websites.

Allerchic Eczema

1697174846

Don’t scroll on just book today!Super knowledgeable picked up on our websites main problem immediately and suggested fixes. I’ve found that Robyn stays up to date with the latest info and updates and always explains issues and options in a clear easy to understand (non-Jargony) manner. Pleasure to work with and glad my website is in such safe hands.

Karina Johnston

1691251500

I’m so happy with the website that Robyn Smart created, since my business has been live I have had so many friends and family comment on how great the website is. Robyn was fantastic to deal with and always wanted to help and answer any questions we had.. and we had a lot. I would recommend Robyn to everyoneThanks again Robyn

Philip Howman

1672651218

I used Smart Robbie to design a new website for me. Working with Robyn was great! She was very patient and made everything simple to understand. I’m very happy with the finished result and intend to keep working with Smart Robbie.

R Sundgaard

1656122057

I recently engaged Smart Robbie to build a new company website and provide hosting services having been referred to her by a colleague.I highly recommend Smart Robbie to anyone looking to build a new site or update their existing one. Robyn is very knowledgeable on all things WordPress / hosting and went above and beyond to help us get our site live and running smoothly.

ULTRAFAN RECEPTION

1647997298

We used Smart Robbie to design a new website for xchange air.I chose Smart Robbie because she really understood our brief. She spent the time getting to know our business which translated to her amazing website she designed for us.I found working with Smart Robbie to be professional, fun and easier than I thought because Robyn is so patient and she spent the time helping me understand her ideas and concepts and how they supported our business goals.I highly recommend Smart Robbie to anyone looking for WordPress website design and I have no hesitation in anyone needing further feedback to contact me directly. Robyn has helped us so much over the past 8 years and we would honestly be lost without her support and guidance (and of course her ability to remind us to renew everything website based in time) and we are forever greatful for her patience for those of us who are not very tech savy ;-) She is honestly the BEST out there!

Anja McIntosh

1638502514

I recently engaged Smart Robbie to maintain our WordPress website.I found working with Smart Robbie to be easy. All our enquiries are answered on time, and issues that arise with the website are addressed almost immediately. Since working with Smart Robbie, our website has been well looked at, and we have had no outstanding technical hiccups. It just gives me peace of mind and allows me to focus on the parts of my business I enjoy. I highly recommend Smart Robbie to anyone looking for quality and efficient WordPress Maintenance.

Helcon Screw Piles

1638421834

Helcon recently engaged Smart Robbie to build our new website.We used Smart Robbie based on a recommendation from a trusted supplier.We found working with Smart Robbie to be quite easy, nothing was a problem, suggestions were offered when we had a creative block, all in all a very happy experience from start to going live and her customer care afterwards.So, if you are looking for a WordPress web designer give Robyn a call.

Kristin Bayley

1638310827

I engaged Smart Robbie to build our new website for To the Moon & Back and to maintain our website each month. I chose Smart Robbie because I loved the aesthetic of her previous work, and because she was a local Mum. The logo she produced for us is amazing and the website has worked like a dream since day one.Smart Robbie is always happy to help us out if we have a question or need to make an edit to the website.I could not recommend Smart Robbie more highly for WordPress website design and maintenance

Michael Havener

1637887437

“I recently engaged Smart Robbie to build a new website for The Space Cube. I chose Smart Robbie because she came highly recommended by my network of business contacts. Smart Robbie has been handling all my website needs since 2017and continues to exceed our expectations with excellent communication, attention to detail and knowledge of WordPress design and maintenance. The increase in sales is a product of the new website; we couldn’t be more pleased with the end result.”

Kim and Wendy Muffet

1637817743

Smart Robbie solves all our website problems quickly and efficiently – I wouldn’t consider using anyone else!I’ve always found Smart Robbie to be courteous, knowledgeable, accurate and cost effective. I highly recommend them to anyone needing WordPress website design support

Kate Merryweather

1637726618

Robyn is a genius and lovely to work with. Nothing is too difficult, her results are spectacular and she knows her SEO too. Robyn is patient, talented and highly skilled. Thank you so much Robyn, I would not hestitate to recomend your WordPress website design services. 100%

Amy Kirwan

1637450282

I recently engaged Smart Robbie to design and build a new website for Dance Cart. The website needed to include online learning management solutions to be able to deliver our new Online Dance Program directly to schools.After a false start with another web developer who promised a lot but didn’t deliver, I had a conversation with Robyn from smart Robbie and was immediately confident that they could deliver the product that I needed.Smart Robbie were great to work with. Their knowledge of the web design space is extensive and I found them to be prompt, reliable and incredibly patient. As someone who knows nothing about web design or build, the process was much easier than I had expected with Smart Robbie there to guide me through.The best part of my experience with Smart Robbie is the amazing website I now have. I am incredibly happy with it and still engage Smart Robbie for ongoing support and changes I need to make to the site from time to time.Amy Kirwan – Director Dance Cart

Kate Toon

1637206029

Robyn is very rare in the WordPress website world, in that she’s responsive, responsible, speedy and totally dedicated to her clients.No issues was too troublesome, lovely customer service through and a doggedness to get to the nub of the issue and crack it.I would highly recommend Robyn to anyone looking for a new site build, a site overhaul, ongoing maintenance or trouble shooting. Awesome service.

Cassandra Gorman

1637197989

After reviewing websites created by Smart Robbie and other web builders, I decided to engage Smart Robbie to design a new website for Flourish ELC and Mint Child Care.Smart Robbie listened to my brief and had a great understanding of what the website needed to achieve. Robyn was able to incorporate many components to the site to ensure it was a smooth and easy interface for visitors to use. Her design was bright, contemporary and on brief.I found working with Smart Robbie to be simple and straightforward. My contact Robyn continues to be very responsive to any website updates I need and is well priced for the service offered.I highly recommend Smart Robbie to anyone looking for WordPress Website Design.

Barry Scott

1637110692

Robyn’s great to work with, and she knows WordPress inside out.Would happily work with her again, and again, and again…

Nicole

1637029778

I recently engaged Smart Robbie to migrate our website over to WordPress from Adobe Catalyst. Robyn’s service was very professional and delivered the results we wanted. I highly recommend Smart Robbie to get the job done.

Jodi Green

1636886331

I recently engaged Smart Robbie to design a new website for ADHD ID.I chose Smart Robbie because I felt like Robyn really understood what I wanted, even though I was a brand new website owner and didn’t have any technical language to communicate with!I found working with Smart Robbie to be reassuring, efficient and the product absolutely hit the mark.I highly recommend Smart Robbie to anyone looking for WordPress website design.

Grant Philipp

1636693991

Many years ago we were put in a awkward position where we needed to clone our existing site and launch with a complicated API and back end dashboard. Robyn not only saved the day but delivered on time and on budget.Something that never happens with dev’s…ever. She is a trustworthy and ethical legend.

Crash Symphony Productions

1636641160

The best thing that I have done to improve my business in the past ten years is engage Smart Robbie to improve things on my website.I engaged Smart Robbie to remove hack files and update my WordPress Software and for monthly maintenance. She went far beyond doing just those things. She made an incalcuable difference to my online functionality, and thus, my business.I chose Smart Robbie because she came highly recommended by another business owner. That person was experiencing serious IT issues and was at her wits end. Smart Robbie quickly turned things around for her. She definitely did for me too.I found working with Smart Robbie to be easy, a stress relief and augmenting my online business operations.I highly recommend Smart Robbie to anyone looking for website maintenance and support.In 2021 online is everything. Smart Robbie is the best in the business.

Jennifer Chang

1626573758

I was lucky to find Robyn at Smart Robbie a few years ago. It was a fortuitous recommendation by someone in the SEO industry that I follow and respect. Prior to having Robyn look after the maintenance/back up of my website, I was paying a fortune to a big company, monthly basis for years. When I needed help, I had to get a ticket and someone would action my problem. Different people resolved my request each time and there was no continuity, sometimes I felt like I was a small fish in a big pond. With Robyn, she understands my philosophy regarding my website matters. I don’t have to explain it each time I need her help. Because I am not an expert in SEO, it’s important to me that I can trust the person who looks after my website/SEO enhancements. I trust Robyn’s work is up-to-date, ethical and clever. I would highly recommend Smart Robbie to look after or design a Wordpress website.

Violeta Finance

1598262684

I highly recommend anyone needing Wordpress support and design contact Smart Robbie. I had a Wordpress related issue that I’d spent HOURS trying to figure out. Robyn came to the rescue, and fixed the issue in no time. Also, because of her keen eye for detail she also picked up on a broken link I hadn’t noticed.

Diana Ioppolo

1598225995

Highly recommend Robyn. Not only very experienced, she’s helpful, takes care of the little details and takes the time to explain things to help make life easier for you.

Expandasign Marketing

1574131456

Fantastic service! Migrating a website can be very stressful, but it went fine thanks to having Robyn on our side. We highly recommend Smart Robbie if you’re looking for a WordPress guru that’s fast, efficient, helpful, and down to earth. Thank you!

Angela Denly

1569899693

Robyn recently did a refresh of my website design and theme upgrade. To say I am thrilled with the improvements she made would be an understatement. As a non-visual person, it’s great to find someone who can take your ephemeral ideas of what you want and create something that looks great in ways I couldn’t properly communicate in the briefing process. Thanks Robyn!

Jordan Turner

1564031435

I’ve never had a more easy design and web experience as this! Smart Robbie understood my brand, it’s aesthetic, vision and identity perfectly and created exactly what I had pictured the website to look – and better. Everything was effortless. I’ve found my home for web and design, and I’m staying.

Gemma JOHNSON

1563869790

Thanks again Robyn for taking the time to do a speed check review and suggestions for improvements on my website. I have started implementing and its faster already! Really appreciated! 🤗

Nicola Johnson

1561096816

Robyn is a genius. She knows what she is doing and is fantastic at it. I havnt worked with her long but so far she has given me more support than any tech/web support person ever has and I’ve had my business for 5 years. She has is efficient and great with communication. I wish id found her years ago! THANKS smart robbie :)

Rachel Bevans

1550191714

I’ve worked with Smart Robbie on multiple occasions to build websites for small business clients and my own company over the last 6 years. Robyn works well with clients to understand their needs and provides creative, pragmatic and effective solutions to brand identity, WordPress website and SEO, and marketing collateral. Having someone I can rely on for advice and delivering great work is a weight off my shoulders.

Natalie Upward

1543980052

We used Smart Robbie recently to help with some tweaks to our business logo, after she came highly recommended. I found working with Robyn to be easy and fast. She delivered exactly what we asked for, and more! She was patient and understanding when we were unsure of what we wanted the final result to look like, and presented various options to assist our decision making. I would highly recommend Smart Robbie.Natalie, Shelves For Shops, Dandenong

Paul Crake

1535774910

Robyn and the team at Smart Robbie have done a fantastic job on our website. Robyn is incredibly helpful, cost-effective and offers terrific support and guidance. From briefing Robyn on our new site, right through to the day-to-day development work, we could not be happier. Robyn doesn’t over complicate things – she uses language we can understand but still keeps the sophisticated, high level development work happening. I can’t recommend Robyn and the Smart Robbie team highly enough.

Agathe Holowatinc

1534519296

Robyn is an exceptional business woman and web designer. This woman can EXECUTE! She is terrific with timelines, communicates clearly and effectively, offers additional value wherever she can and goes above and beyond with aesthetics and functionality for any given project. I have worked with her on 1 new website design, 1 website redesign, and am in the process of working with her on adding a substantive amount of content onto a pre-existing website. Even though I’m located in Bermuda, and I’ve reviewed proposals from developers on island and in North America, she is my top choice. I highly recommend Robyn.

Sophie Armstrong

1534374856

Can’t recommend Robyn enough, fantastic work & super quick.

Giselle “Gigiymello”

1534222227

Robyn has turned our dream website into reality! Her attention to detail, commitment and communication skills are second to none. Our brief was delivered beyond expectations and we got great feedback straight away from clients and business partners. It has made a huge difference in how the business is positioned in the market, and we feel more confident we are attracting the right clientele. The site is functional, clean and well coded. I wouldn’t hesitate to recommend Robyn for any website development work.

Blue Badge Insurance Australia

1534220524

From the moment we met Robyn, it was clear that she was the right choice for us. Her “can do” attitude and willingness to be flexible, responsive and hands-on made her the perfect fit for a small business like ours. Robyn has a great understanding of web development and always provided valuable advice on how to make cost-effective changes to improve the overall performance, functionality and user experience of our website. I highly recommend Robyn to any business.

Infinity Lifts

1534217840

Robyn Smart, from Smart Robbie Design is a fantastic operator. Professional from the get go, and delivered amazing results on time and on budget. We are very pleased with both the graphics and website that Robyn created for us that we will continue to use her services in the future and would not hesitate to recommend her to friends and associates. Robyn is a fantastic communicator and kept us informed every step of the way and went above and beyond in terms of helping us decide what we needed and wanted.Thanks Again Robyn.

Karina Savage

1529147299

Robyn is such a wealth of knowledge and she is so giving of her time and expertise. In a short time span she significantly helped my business especially with respect to SEO and I am very grateful. She is a lovely person to work with and I would highly recommend her.

Danielle Owen Whitford

1495663095

Loved working with Robyn, she was insightful, helpful and went above and beyond to get things up and running. I would highly recommend her!

Binta Hellemans

1493254412

Our company used Smart Robbie for our website design and Robyn was fantastic! She understood what we wanted and made our vision come to life. Smart Robbie was professional, flexible and accommodating every step of the way. We love our website and couldn’t be happier with the end result. Thank you Robyn!!!

Kristina Martin

1488857426

Amy Hartfield

1488697141

Robyn designed our website for Elegant Fairies Oven Cleaning which we get compliments on often – Robyn also does SEO’s and Website care for us and does a AMAZING JOB!!Definitely highly recommended and 5+ stars

Craig Davies

1488601990

It was a wonderful experience to work with Robyn to develop the ‘2 Way Learning’ logo and website from no more than a concept. She was extremely adaptive as she incorporated my requests into a design that is both user friendly and functional. At all times her creativity was clearly evident.

Jeni Jewell

1488588598

Smart Robbie did an excellent job of branding and setting up the website for my business. She understood exactly what I needed and produced the kind of creative branding and website I was after. A job well done.

Smart Robbie acknowledges all Aboriginal and Torres Strait Islander Traditional Custodians of Country and recognises their continuing connection to land, sea, culture and community. We pay our respects to Elders past and present.

Malicious WordPress Redirect Campaign Attacking Several Plugins

Current Plugins that have been targeted:

A list of IP addresses you should block if you are using free security software (or premium)

What can you do to minimise the chances of an attack?

Free Trial Firewall

Leave a Comment Cancel Reply

WORDPRESS SERVICES

WORDPRESS RESOURCES

OUR COMPANY

Get your FREE Instant Speed Audit

WordPress Maintenance Checklist