Security News > 2024 > December > 390,000 WordPress accounts stolen from hackers in supply chain attack

390,000 WordPress accounts stolen from hackers in supply chain attack

2024-12-14 15:17

A threat actor tracked as MUT-1244 has stolen over 390,000 WordPress credentials in a large-scale, year-long campaign targeting other threat actors using a trojanized WordPress credentials checker. [...]

News URL

https://www.bleepingcomputer.com/news/security/390-000-wordpress-accounts-stolen-from-hackers-in-supply-chain-attack/

#attack #hacker #supplychain #wordpress

Related news

Notorious Hacker Group TeamTNT Launches New Cloud Attacks for Crypto Mining (source)
North Korean govt hackers linked to Play ransomware attack (source)
LottieFiles hit in npm supply chain attack targeting users' crypto (source)
LottieFiles hacked in supply chain attack to steal users’ crypto (source)
LottieFiles supply chain attack exposes users to malicious crypto wallet drainer (source)
LiteSpeed Cache WordPress plugin bug lets hackers get admin access (source)
Hackers increasingly use Winos4.0 post-exploitation kit in attacks (source)
Iranian Hackers Use "Dream Job" Lures to Deploy SnailResin Malware in Aerospace Attacks (source)
Iranian Hackers Deploy WezRat Malware in Attacks Targeting Israeli Organizations (source)
Hackers breach US firm over Wi-Fi from Russia in 'Nearest Neighbor Attack' (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Wordpress		7	2	93	44	18	157

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.