Home / Jul 11, 2026 / Story
0
#3 The Hacker News general July 10, 2026 at 11:30 UTC

Exposed Hacker Server Reveals WP-SHELLSTORM Backdooring Thousands of WordPress Sites

By [email protected] (The Hacker News)

AI Summary

A cybercrime crew tracked as WP-SHELLSTORM left an exposed server online for three weeks, revealing tools and target lists naming over 1.4 million WordPress sites, with confirmed backdoor installations across a subset of targets. The exposed server provided researchers a rare inside view of how mass WordPress compromise operations are structured and automated.

Relevance score: 82.0/100

# More from July 11