Undetected Fake RECAPTCHA Malware
-
A few months ago we found Malware on our websites. We were able to track down it was being injected with powershell. We found the corrupt files and removed them. We also removed all admin users except for two people and make sure our plugins were updated.
We are now running into this issue again. Even if we delete the file, it reappears in another file.From what we can gather, the malware does not appear for everyone. It is inconsistent. It may appear right when entering the site or after navigating a few pages.
Once it pops up, it provides a CAPTCHA and then asks users to take additional steps for “extra verification”.
The sites it is active on is:
nobu.ai
https://www.columbusrecoverycenter.com/
Can we get help figuring out where this is coming from and what to do?
The blog I need help with is: (visible only to logged in users)
-
Forgot to add – our site is hosted by WP Engine. I have reached out to them and they were unable to find the malware. It also does not get flagged by Wordfence.
-
-
We can’t help with third party plugins nor with sites not running on the wordpress.com platform. You must take a look in the documentation at wordpress.org to find howto remove that malware.
-
- The topic ‘Undetected Fake RECAPTCHA Malware’ is closed to new replies.
WordPress.com Forums 