A naukri.com initiative
Securityaffairs
2w
68
Image Credit: Securityaffairs
A large-scale phishing campaign targets WordPress WooCommerce users
- A large-scale phishing campaign is targeting WordPress WooCommerce users.
- Threat actors are using a fake security alert to distribute a 'critical patch' that actually contains a backdoor.
- The phishing campaign resembles a previous attack from December 2023, with similarities in tactics and techniques.
- Once the fake patch is downloaded, it creates a hidden administrator account and installs web shells, giving attackers full control over the server.
Read Full Article
4 Likes
For uninterrupted reading, download the app