Three popular plugins served malicious JavaScript through a compromised CDN.
In a supply chain attack, attackers install backdoors through the WordPress plugins OptinMonster, TrustPulse, and PushEngage.
New analysis shows the campaign, which uses compromised WordPress sites, may be linked to the ransomware and extortion group Vice Society.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results