Large-Scale Phishing Campaign Targets WooCommerce Users with Fake Security Alert

A large-scale phishing campaign is targeting WooCommerce users with a fake security alert prompting them to download a "critical patch" that adds a backdoor to their WordPress site. This campaign aims to compromise sites by exploiting administrators' trust in security updates. The impacts include the takeover of WordPress sites, which can lead to data loss and service disruptions.