MUT-1244 Compromises Over 390,000 WordPress Credentials
/ 1 min read
🦠 MUT-1244 Threat Actor Compromises Over 390,000 WordPress Credentials. An investigation into the threat actor identified as MUT-1244 reveals a sophisticated campaign targeting security professionals through phishing and trojanized GitHub repositories. The attacker has exfiltrated more than 390,000 credentials, primarily believed to be for WordPress accounts, by leveraging a malicious tool disguised as a credentials checker. The phishing campaign specifically targeted academic researchers, while the trojanized repositories contained fake proof-of-concept exploit code. This investigation underscores the importance of vigilance and careful vetting of tools and sources used by security professionals, as they remain prime targets for such attacks.
