Hackers target WordPress sites running OneTone theme

Hackers have begun to actively target WordPress sites running the OneTone theme in an effort to exploit a vulnerability that gives them the ability to read and write cookies as well as create backdoor admin accounts.

The vulnerability being exploited in the ongoing campaign is a cross-site scripting (XSS) bug in the OneTone WordPress theme created by the developer Magee WP which has not been updated since 2018.

Source Article

Frederic M. Kolodziej

Next Post

The best Microsoft Surface Go alternative right now is great for remote working

Wed Apr 29 , 2020
The Chuwi UBook Pro is probably the best alternative to Microsoft’s Surface Go, which appears to have been discontinued. The Surface Go is currently out of stock and has been so for a while. You can still pick it up from third party retailers, but often at a premium. Chuwi […]