Joomla SEO Spam Injector: Obfuscated PHP Backdoor Hijacking Site Visitors (opens in new tab)

Overview During a recent malware cleanup investigation, we encountered a compromised Joomla website where the site owner reported a strange issue. Their website displayed a large number of suspicious product links that had nothing to do with their business. These products were not added by the website owner and did not exist in their catalog. Visitors and search engines were seeing pages that promoted unrelated products, raising immediate concerns about spam injection or remote content manipu...