Reports indicate that vulnerabilities in WordPress plugins are being targeted by hackers, potentially leading to the theft of cryptocurrency. SlowMist experts are concerned that cybercriminals are taking advantage of these security flaws to launch attacks on various websites, blogs, and individuals holding digital assets. By injecting harmful JavaScript code into compromised online platforms, hackers can exploit plugin weaknesses and target victims' cryptocurrency wallets.

In some cases, malicious pop-up messages may deceive users into running code and authorizing Web3 wallet transactions when they visit infected sites. This could result in the unauthorized transfer of crypto assets to the attackers.

To mitigate these risks, SlowMist experts advise web administrators to update their WordPress plugins promptly and conduct thorough vulnerability assessments. Moreover, individuals with digital assets are urged to be vigilant online, avoiding downloads from unfamiliar sources and resisting offers of guaranteed profits.

Recent findings from SlowMist have also highlighted a trend where multiple attackers are engaging in comment spam on the social network X under posts from cryptocurrency projects. These malicious comments reportedly make up a significant portion, around 80%, of the total interactions on these accounts.