Over 1 Million WordPress Sites Infected by Balada Injector Malware Campaign “Improving Your Focus and Productivity at Work” “Boosting Your Concentration and Efficiency in the Workplace”
WordPress websites have been hit by a malicious campaign called Balada Injector, which leverages all known and recently discovered theme and plugin vulnerabilities. Over one million WordPress websites have been infected since 2017 and the attack plays out in waves every few weeks. The attackers predominantly try to obtain database credentials in the wp-config.php file,…