Over 5,000 WordPress sites have been hacked globally, with malware from the wp3[.]xyz domain enabling creation of fake admin accounts and stealing sensitive information, according to BleepingComputer and webscript security firm c/side. It is suggested that website admins employ firewalls and other countermeasures, scrutinize privileged accounts, employ multi-factor authentication, and bolster cross-site request forgery defenses.
FBI deletes Chinese malware from more than 4,200 computers
US law enforcement, with court authorization, reportedly deleted the China-originated PlugX malware from 4,258 US computers as part of a broader international operation against a
