Security News > 2024 > December > 390,000 WordPress accounts stolen from hackers in supply chain attack

390,000 WordPress accounts stolen from hackers in supply chain attack

2024-12-14 15:17

A threat actor tracked as MUT-1244 has stolen over 390,000 WordPress credentials in a large-scale, year-long campaign targeting other threat actors using a trojanized WordPress credentials checker. [...]

News URL

https://www.bleepingcomputer.com/news/security/390-000-wordpress-accounts-stolen-from-hackers-in-supply-chain-attack/

#attack #hacker #supplychain #wordpress

Related news

Bybit Hack Traced to Safe{Wallet} Supply Chain Attack Exploited by North Korean Hackers (source)
Google says hackers abuse Gemini AI to empower their attacks (source)
Abandoned AWS S3 buckets can be reused in supply-chain attacks that would make SolarWinds look 'insignificant' (source)
Hacker pleads guilty to SIM swap attack on US SEC X account (source)
North Korea targets crypto developers via NPM supply chain attack (source)
whoAMI attacks give hackers code execution on Amazon EC2 instances (source)
Microsoft: Hackers steal emails in device code phishing attacks (source)
Chinese Hackers Exploit MAVInject.exe to Evade Detection in Targeted Cyber Attacks (source)
Hackers Exploit Paragon Partition Manager Driver Vulnerability in Ransomware Attacks (source)
Hackers Exploit AWS Misconfigurations to Launch Phishing Attacks via SES and WorkMail (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Wordpress		7	2	93	44	18	157

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.