Over 5,000 WordPress sites have been hacked globally, with malware from the wp3[.]xyz domain enabling creation of fake admin accounts and stealing sensitive information, according to BleepingComputer and webscript security firm c/side. It is suggested that website admins employ firewalls and other countermeasures, scrutinize privileged accounts, employ multi-factor authentication, and bolster cross-site request forgery defenses.

North Korean Hackers Use Fake U.S. Companies to Spread Malware in Crypto Industry: Report
North Korean hackers reportedly set up shell companies in the US to penetrate the crypto sector and target developers via fake job offers, according to