ShellCodeX
Tools • Events • News • Insights
ShellCodeX Intelligence Brief
HIGH Cybersecurity

Law enforcement disrupts SocGholish botnet by cleaning 15,000+ WordPress sites

Source headline: Police cleans nearly 15,000 SocGholish-infected sites tied to Evil Corp

Threat level High
Signal strength 75/100
Source confidence 1 source
Published 10 hours ago

Intelligence Summary

International law enforcement cleaned almost 15,000 malware-infected WordPress sites tied to the SocGholish botnet. Agencies also took down more than 100 servers associated with the same operation. The infrastructure is linked to the Evil Corp Russian cybercrime group. SocGholish infections typically rely on compromised websites to support malicious activity and botnet control. Site owners should review for WordPress compromise indicators and ensure timely hardening and patching to prevent reinfection.

Recommended Action

Review affected assets, schedule urgent remediation, and monitor related indicators.

Topics

#wordpress #botnet #evil-corp #law-enforcement #malware-removal #socgholish
Original reporting BleepingComputer Police cleans nearly 15,000 SocGholish-infected sites tied to Evil Corp
Open original source

Related Pulse Signals

View all signals
Critical · Cybersecurity Gentlemen ransomware adds EDR-killing techniques to evade defenses Medium · Cybersecurity Nintendo confirms survey data theft via TinyPulse service High · Cybersecurity USB worm delivers clipboard-stealing crypto malware via Windows shortcuts High · Cybersecurity Microsoft traces Windows USB LNK clipper to Tor-based hidden-service C2