Live chat backdoor
On August 23rd, Nin Tech Net released a warning that a vulnerability had been discovered in the plugin and had been under attack since the previous day.
The Wordfence firewall’s built-in XSS protection detected attacks against this vulnerability as early as August 20th.
During the initial investigation, we identified the attacks coming from a number of IP addresses linked to web hosting providers.
Shortly after that post, most of the IPs involved ceased the activity.