Web content management systems, referred here as CMS, is a customizable software platform on which websites can be easily built. According to Web Technology Surveys, more than 55% of websites on the Internet use any one of the many popular CMS platforms [1]. Their popularity arises due to ease of use, capability to customize, and ability to abstract complex programming layers into a very simple user interface, especially for a novice user. However, while the user may have very little or no knowledge of the backend database system containing sensitive information, this platform offers itself as an easy target to ever-expanding malware threats. In this paper, we explore and analyze in depth of one such malware, focusing on the origin of the attack, its deployment, its regenerating methods, and the cost of combating and retrieving the compromised data.