Hackers Target WooCommerce Payments Plugin to Hijack Websites
Hackers Target WooCommerce Payments Plugin to Hijack Websites
Threat Level
Vulnerability Report
For a detailed threat advisory, download the pdf file here
Summary
Cybercriminals are orchestrating a widespread campaign to exploit a pivotal WooCommerce Payments plugin, thereby acquiring the privileges of various users, including those with administrator status, on susceptible WordPress installations.
To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.