SocGholish Botnet Infrastructure Disrupted, 15,000 WordPress Sites Cleaned
Scan all WordPress sites for SocGholish malware signatures and patch any vulnerabilities to prevent reinfection.
Scan all WordPress sites for SocGholish malware signatures and patch any vulnerabilities.
Summary
Law enforcement agencies from the Netherlands, Canada, Germany, and the United States have dismantled malicious infrastructure linked to the SocGholish botnet and cleaned up nearly 15,000 infected WordPress websites. Dutch National High Tech Crime Unit spokesperson Maikel Rollman emphasized that the operation deprives cybercriminals of access to compromised systems. The cleanup involved removing malware, revoking compromised credentials, and restoring site integrity.
SocGholish was used to distribute malware, phishing campaigns, and botnet traffic across the web. The coordinated effort demonstrates the effectiveness of cross‑border cooperation in combating large‑scale WordPress infections. Website owners are urged to verify their sites for residual threats and apply security hardening measures.
Key changes
- Dutch law enforcement disrupted SocGholish malicious infrastructure
- Cleaned up nearly 15,000 infected WordPress sites
- Collaboration with Canada, Germany, US authorities
- SocGholish used to host malware, phishing, botnet traffic
- Cleanup involved removing malware and restoring sites
- Website owners urged to verify sites for residual threats