Hackers are now hijacking the WordPress sites for pushing the Windows and Mac malware

Security researchers have discovered that hackers are taking advantage of old versions of WordPress and plugins to modify thousands of websites, trying to deceive visitors into downloading and installing malware.
The hacking effort remains “very much active,” Simon Wijckmans, the founder and CEO of web security firm c/side, which identified the attacks.
The hackers aim to distribute malware that can extract passwords and other personal details from users of both Windows and Mac systems. According to c/side, several of the compromised websites rank among the top sites on the internet.
When the hacked WordPress sites load in a user’s browser, the content quickly changes to display a fake Chrome browser update page, requesting the website visitor download and install an update in order to view the website, the researchers found. If a visitor accepts the update, the hacked website will prompt the visitor to download a specific malicious file masquerading as the update, depending on whether the visitor is on a Windows PC or a Mac.
Wijckmans said that they alerted Automattic, the company that develops and distributes WordPress.com, about the hacking campaign and sent them the list of malicious domains and that their contact at the company acknowledged receipt of their email.
C/side said it identified over 10,000 websites that appear to have been compromised as part of this hacking campaign. Wijckmans said the company detected malicious scripts on several domains by crawling the internet and performing a reverse DNS lookup. This is a technique to find domains and websites associated with a certain IP address, which revealed more domains hosting the malicious scripts.