WordPress Bug 'Patch' Installs Backdoor for Full Site Takeover

Attackers are targeting WordPress users with a fake security alert that warns of a fabricated remote code execution (RCE) flaw; it offers a “patch” that in actuality spreads malicious code that can …

Read full article