A persistent malware campaign, known as DollyWay, has infected more than 20,000 WordPress websites worldwide, redirecting users to fraudulent gambling, cryptocurrency, and sweepstakes sites. Cybersecurity researchers have tracked this malware for years, as it continues to evolve, making it harder to detect and remove.
What is DollyWay Malware?
Active since at least 2016, DollyWay exploits vulnerabilities in outdated WordPress plugins and themes, allowing hackers to inject malicious code into websites. The malware causes visitors to be redirected to scam sites, creating a highly profitable operation for cybercriminals. Currently, DollyWay generates around 10 million impressions per month, showing its widespread impact.
One of the major challenges in combating DollyWay is its stealthy nature. The malware only activates when a visitor clicks on a link, meaning it doesn’t affect bots or logged-in users. This method of operation makes it more difficult for security tools to detect and block the threat.
Steps to Protect Your WordPress Site from DollyWay Malware
- Keep Plugins and Themes Updated
Regularly update your WordPress plugins and themes to protect against known vulnerabilities. Outdated software is a prime target for attackers. - Use Security Plugins and Monitoring Tools
Install security plugins like Wordfence, Sucuri, or iThemes Security to detect suspicious activity and block potential threats. - Enforce Strong Authentication
Use strong passwords for all accounts and enable two-factor authentication (2FA) to enhance security and prevent unauthorized logins. - Regularly Backup Your Website
Back up your website regularly to ensure you can restore it to a clean state if malware is detected. - Scan for Malware and Clean Infected Files
Regularly scan your site for malware using security tools. If infected, follow WordPress guides to manually remove malicious code or consult a professional.
By taking these steps, WordPress site owners can reduce the risk of malware infections and ensure the security of their platforms. Preventing and mitigating attacks like DollyWay is essential to protecting your website and its users from falling victim to scams.