Cybersecurity researchers have discovered a sophisticated malware that hides as a WordPress plugin to discreetly create admin accounts and control breached sites. The programme is also capable of activating other malicious plugins remotely, altering site content, injecting spam links, and causing search engines to index questionable content to redirect users to harmful sites. The extent of the attacks and the initial intrusion methods are still unknown.
Iran-linked hackers disrupt operations at US critical infrastructure sites
Hackers working on behalf of the Iranian government are disrupting operations at multiple US critical infrastructure sites, likely in response to the country’s ongoing war
