Global police take down SocGholish malware, protect 15k WP sites

LAW enforcement from four countries collaborated with Europol to dismantle the SocGholish malware infrastructure, affecting nearly 15,000 compromised WordPress websites. Known since 2017, SocGholish is a malware framework utilized for deploying various malicious payloads via drive-by downloads. The operation targeted a Russian-speaking group, DEV-0206, linked to the Evil Corp gang. The malware disguises itself as a browser update, tricking users into downloading harmful software. In total, 106 command-and-control servers were taken offline, and warnings were issued to affected website owners to enhance security measures.