Wordfence Uncovers Sophisticated Malware Campaign Targeting WordPress

Wordfence has revealed a sophisticated malware campaign targeting WordPress, active since 2023. This campaign uses a malicious WordPress Core plugin to steal credit card information and credentials. The malware hides on checkout pages and mimics Cloudflare to avoid detection. Advanced anti-detection techniques make this malware particularly difficult to spot.