Researchers Uncover Malware Posing as WordPress Caching Plugin

Cybersecurity researchers have discovered a sophisticated malware that hides as a WordPress plugin to discreetly create admin accounts and control breached sites. The programme is also capable of activating other malicious plugins remotely, altering site content, injecting spam links, and causing search engines to index questionable content to redirect users to harmful sites. The extent of the attacks and the initial intrusion methods are still unknown.