THREATOPS
THREAT OPSThreat News › How WP-SHELLSTORM Exposed 1.4M WordPress Sites

How WP-SHELLSTORM Exposed 1.4M WordPress Sites

medsocradar_blogPublished 2026-07-09

<h1>How WP-SHELLSTORM Exposed 1.4M WordPress Sites</h1> <p><em>The SOCRadar </em><em>Threat Intelligence</em><em> Team traces an exposed directory back to a Chinese-linked cybercrime operation and details findings from the investigation.</em></p> <p>Every so often, a <a href="https://socradar.io/glossary/threat-actors/">threat actor</a>’s mistake hands over the keys to their entire operation. That

MITRE ATT&CK techniques

Indicators of compromise

Original source: https://socradar.io/blog/wp-shellstorm-expose-1-4m-wordpress-sites/