Both 32- and 64-bit Linux systems are being targeted by the new malware, which uses a set of successively running hardcoded exploits to compromise WordPress sites, according to a Dr. Web report.
Attackers could then use the infected sites for phishing and malvertising campaigns, as well as malware distribution initiatives.
Dr. Web has also noted that the malware has been updated to target the Brizy WordPress plugin, WooCommerce, FV Flowplayer Video Player, WordPress Delucks SEO plugin, WordPress theme OneTone, Rich Reviews plugin, and WPeMatico RSS Feed Fetcher.