TechRadar

WooCommerce phishing campaign uses fake patch to lure victims into installing backdoors

Patchstack spotted a new phishing campaign targeting WooCommerce users The email warns the users about a "critical vulnerability" that must be fixed The "fix" is actually malware that creates a rogue ...
Bleeping Computer

WooCommerce admins targeted by fake security patches that hijack sites

A large-scale phishing campaign targets WooCommerce users with a fake security alert urging them to download a "critical patch" that adds a Wordpress backdoor to the site. Recipients that take the ...