From cyware.com
- Depending on the type of platform, the malware determines the method it will use to further infect the website files.
- The malware operators are propagating the malware through hestonsflorists[.]com.
A new backdoor malware has been found re-infecting the files even after the website owners have cleaned their websites. It primarily targets to WordPress-based and Joomla-based websites to initiate its infection process.