When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
Cybercriminals are using compromisedWordPress websitesto form a huge army for credential stuffing attacks, experts have warned.
Among the victims, the publication further reports, is the website of Ecuadors Association of Private Banks.
Sucuri says its been tracking this threat actor in the past.
Until now, the group used the same technique for a different purpose - to implement the AngelDrainermalware.
The group even built their own fake Web3 websites to get people to connect their wallets.
The researchers arent certain why the group decided to pivot into credential stuffing.
“Moreover, they draw too much attention and their domains get blocked pretty quickly.
