Hackers are creating backdoor accounts and cookie files on WordPress sites running OneTone

Attacks began earlier this month after WordPress theme developer did not release a patch for a trivial bug.

source Latest blogs for ZDNet https://ift.tt/3cOzG5C