Security
Headlines
HeadlinesLatestCVEs

Headline

WordPress Plugin Exploited to Steal Credit Card Data from E-commerce Sites

Unknown threat actors are abusing lesser-known code snippet plugins for WordPress to insert malicious PHP code in victim sites that are capable of harvesting credit card data. The campaign, observed by Sucuri on May 11, 2024, entails the abuse of a WordPress plugin called Dessky Snippets, which allows users to add custom PHP code. It has over 200 active installations.

The Hacker News
#wordpress#php#The Hacker News

The Hacker News: Latest News

Flying Under the Radar - Security Evasion Techniques