SlowMist: Beware of watering hole attacks launched by malicious attackers using WordPress plugin vulnerabilities
According to Golden Finance, SlowMist Security reminds that recently, attackers have used WordPress plugin vulnerabilities to attack normal sites, and then injected malicious js code into the sites to launch watering hole attacks. When users visit the sites, malicious pop-ups pop up to trick users into executing malicious code or signing Web3 wallets, thereby stealing users' assets. It is recommended that sites that use WordPress plugins pay attention to checking for vulnerabilities and update plugins in a timely manner to avoid being attacked; when users visit any site, they should carefully identify the downloaded programs and the content of the Web3 signature to avoid downloading malicious programs or authorizing malicious signatures that may lead to asset theft.
Disclaimer: Includes third-party opinions. No financial advice. See Risk Warning.Address:https://www.j56.xyz/flash/6611.html
