A new malware campaign has compromised more thanĀ 5,000 WordPress sites to create admin accounts, install a malicious plugin, and steal data. […]
from https://www.bleepingcomputer.com/news/security/wp3xyz-malware-attacks-add-rogue-admins-to-5-000-plus-wordpress-sites/