wp-login.phpfile that secretly steals your WordPress login information.
WordPress Keylogger Injection
An injection into the
Renamed wp-config.php => Sensitive Data Exposure
Attackers continue to find easy victims by crawling websites using enumeration techniques and looking for configuration files that have had their file extension modified.
Mass WP Infection: trainresistor.cc
.wtf() Skimmer Still Targeting WooCommerce Websites
Almost identical to the one from back in March 2021 except this uses convert-server.com as the exfiltration domain.