Is it possible for a rogue code to insert a cron job?

albatroz · Aug 28, 2018

We recently discovered that a wordpress site was infected with malware and was sending SPAM
using a cronjob, so I was wondering how was this cronjob created if the CPanel password is encrypted.

Jcats · Aug 28, 2018

Has nothing to do with cPanel password, they don't need to log into cPanel to create the cronjob, it can all be done via command line, example

Use PHP to create, edit and delete crontab jobs?

cPanelLauren · Aug 29, 2018

The response by @Jcats is correct - these sorts of malware have been on an uptick recently which is a reminder that it is extremely important to ensure that your WordPress/CMS installations are up to date and secure Wordpress has some advice on this which might be helpful as well Hardening WordPress « WordPress Codex

Thanks!

Forums

The Community Forums

Interact with an entire community of cPanel & WHM users!

Is it possible for a rogue code to insert a cron job?

albatroz Well-Known Member

Jcats Well-Known Member

cPanelLauren Forums Analyst II
Staff Member

How can I rename package names in the safest possible way?

SOLVED PHP FPM - impossible to validate new configuration

Possible to install CSF via WHM GUI?

Is it possible to install cPanel 68?

Possible to use SSL email?

Share This Page

Useful Searches

The Community Forums

Interact with an entire community of cPanel & WHM users!

Is it possible for a rogue code to insert a cron job?

albatroz Well-Known Member

Jcats Well-Known Member

cPanelLauren Forums Analyst II Staff Member

How can I rename package names in the safest possible way?

SOLVED PHP FPM - impossible to validate new configuration

Possible to install CSF via WHM GUI?

Is it possible to install cPanel 68?

Possible to use SSL email?

Share This Page

cPanelLauren Forums Analyst II
Staff Member