Threat hunters have discovered a rogue WordPress plugin that's capable of creating bogus administrator users and injecting malicious JavaScript code to steal credit card information.
The skimming activity is part of a Magecart campaign targeting e-commerce websites, according to Sucuri.
"As with many other malicious or fake WordPress plugins it contains some deceptive information at



Source: TheHackerNews
Source Link: https://thehackernews.com/2023/12/rogue-wordpress-plugin-exposes-e.html