Cybersecurity researchers have discovered a sophisticated malware that hides as a WordPress plugin to discreetly create admin accounts and control breached sites. The programme is also capable of activating other malicious plugins remotely, altering site content, injecting spam links, and causing search engines to index questionable content to redirect users to harmful sites. The extent of the attacks and the initial intrusion methods are still unknown.
Trojanized PyPI AI Proxy Steals Claude Prompt, Exfiltrates Data
A malicious PyPI package, hermes-px, that masquerades as a “Secure AI Inference Proxy” while secretly stealing user prompts and abusing a private university AI service.
