Hackers Abuse Blockchain Smart Contracts to Spread Malware via Infected WordPress Sites
UNC5142 leverages compromised WordPress sites and BNB Smart Chain smart contracts to deliver information-stealing malware to Windows and macOS systems.
Cl0p-linked actors actively exploit a critical Oracle E-Business Suite zero-day for large-scale data theft while stealthy groups use compromised WordPress sites to deliver information-stealers.
ShadowCaptcha Exploits WordPress Sites to Spread Ransomware, Info Stealers, and Crypto Miners
ShadowCaptcha uses compromised WordPress sites and fake CAPTCHA pages with ClickFix social engineering to deliver stealers, ransomware, and cryptocurrency miners.