Overview
Bleeping Computer and other sources reported that a previously unidentified Linux malware has been exploiting vulnerabilities in numerous outdated WordPress plugins and themes through the insertion of malicious JavaScript. This malware targets 32-bit and 64-bit Linux systems and grants the operator remote command abilities, according to a report by antivirus vendor Dr. Web. The trojan uses a set of hardcoded exploits that run continuously until one of them is successful. To defend against this threat, WordPress website admins should update to the latest available versions of the plugins and themes active on their site and replace those that are no longer developed/supported with reputable alternatives