Over 2,000 WordPress websites have been found infected with a piece of Crypto-mining malware. The malware does not only steal the resources of visitors’ computers to mind digital currencies, but also logs visitors’ every keystroke. Researchers have discovered a malicious campaign that infects WordPress websites with a malicious script that delivers an in-browser cryptocurrency miner from Coinhive and a keylogger.
Cloudfire[.]solutions is a cryptocurrency mining malware and is not related to network management and cybersecurity firm Cloudflare. Since the malware used cloudfire[.]solutions domain to spread the malware, it has been given this name.