390,000+ WordPress Credentials Stolen via Malicious GitHub Repository Hosting PoC Exploits

Updated on December 13, 2024

A now-removed GitHub repository that advertised a WordPress tool to publish posts to the online content management system (CMS) is estimated to have enabled the exfiltration of over 390,000 credentials.
The malicious activity is part of a broader attack campaign undertaken by a threat actor, dubbed MUT-1244 (where MUT refers to “mysterious unattributed threat”) by Datadog Security Labs, that…

Read the rest of the story at Read More

Source: The Hacker News

August 12, 2024 Uncategorized

Researchers Uncover Vulnerabilities in S...

May 5, 2025 Uncategorized

⚡ Weekly Recap: Nation-State Hacks, Sp...

December 18, 2023 Uncategorized

390,000+ WordPress Credentials Stolen via Malicious GitHub Repository Hosting PoC Exploits

Related posts

Researchers Uncover Vulnerabilities in S...

⚡ Weekly Recap: Nation-State Hacks, Sp...

Beware: Experts Reveal New Details on Ze...

Leave a Comment Cancel reply

Recent News

Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi

Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

Perfection is a Myth. Leverage Isn’t: How Small Teams Can Secure Their Google Workspace

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

How to Automate CVE and Vulnerability Advisory Response with Tines