New WordPress Malware Masquerades as Plugin

New WordPress malware disguised as a plugin gives attackers persistent access and injects malicious code enabling administrative control