Is it possible for a rogue code to insert a cron job?

albatroz · Aug 28, 2018

We recently discovered that a wordpress site was infected with malware and was sending SPAM
using a cronjob, so I was wondering how was this cronjob created if the CPanel password is encrypted.

Jcats · Aug 28, 2018

Has nothing to do with cPanel password, they don't need to log into cPanel to create the cronjob, it can all be done via command line, example

Use PHP to create, edit and delete crontab jobs?

cPanelLauren · Aug 29, 2018

The response by @Jcats is correct - these sorts of malware have been on an uptick recently which is a reminder that it is extremely important to ensure that your WordPress/CMS installations are up to date and secure Wordpress has some advice on this which might be helpful as well Hardening WordPress « WordPress Codex

Thanks!

Thread starter	Similar threads	Forum	Replies	Date
C	Possible Bug: TLS 1.3 not available with NGINX	Security	3	Jun 10, 2021
	log has a uid 0 account - Possible hack detected.	Security	6	Feb 3, 2021
J	SOLVED Is it possible that ConfigServer Security & Firewall blocks communication of WHMCS with registrar?	Security	3	Jun 20, 2020
	Possible bug using google authentication	Security	2	Nov 25, 2019
R	Possible virus on Cpanel	Security	2	Nov 21, 2019

Search

Search

Is it possible for a rogue code to insert a cron job?

albatroz

Well-Known Member

Jcats

Well-Known Member

cPanelLauren

Product Owner