Terence Eden on Nostr: Looks like it pulls in a script from `94.156.79.8` and does a bunch of other shady ...
Looks like it pulls in a script from `94.156.79.8` and does a bunch of other shady shit.
I see it discussed at https://www.wordfence.com/blog/2024/06/an-inside-look-at-the-malware-and-techniques-used-in-the-wordpress-org-supply-chain-attack/
But I don't have any of those plugins.
I see it discussed at https://www.wordfence.com/blog/2024/06/an-inside-look-at-the-malware-and-techniques-used-in-the-wordpress-org-supply-chain-attack/
But I don't have any of those plugins.