‼️🇪🇸 Threat Actor Auctioning WordPress Admin Access to Spanish E-Commerce Site With REDSYS Paym...

Summary

A threat actor is publicly auctioning administrative access to a Spanish e-commerce platform that integrates REDSYS payment gateway and processes approximately 1,200 card transactions monthly. The compromise exposes the site's WordPress infrastructure and payment processing capabilities to potential buyers. This represents both a direct breach of the targeted merchant and a supply-chain risk for customers whose payment data may be at risk.

Indicators of Compromise

• malware — WordPress admin access compromise