Apple Removes VPN Apps from Russian App Store Amid Government Pressure

Webinar Alert: Learn How ITDR Solutions Stop Sophisticated Identity Attacks

OVHcloud Hit with Record 840 Million PPS DDoS Attack Using MikroTik Routers

Blueprint for Success: Implementing a CTEM Operation

GootLoader Malware Still Active, Deploys New Versions for Enhanced Attacks

Unknown threat actors are abusing lesser-known code snippet plugins for WordPress to insert malicious PHP code in victim sites that are capable of harvesting credit card data.
The campaign, observed by Sucuri on May 11, 2024, entails the abuse of a WordPress plugin called Dessky Snippets, which allows users to add custom PHP code. It has over 200 active installations.

Headline

WordPress Plugin Exploited to Steal Credit Card Data from E-commerce Sites

The Hacker News: Latest News