Cybersecurity researchers have discovered a sophisticated malware that hides as a WordPress plugin to discreetly create admin accounts and control breached sites. The programme is also capable of activating other malicious plugins remotely, altering site content, injecting spam links, and causing search engines to index questionable content to redirect users to harmful sites. The extent of the attacks and the initial intrusion methods are still unknown.
Mosyle uncovers new cross-platform malware undetected by antivirus tools – 9to5Mac
Mosyle uncovers new cross-platform malware undetected by antivirus tools 9to5Mac
