Hidden in Plain Chain: How UNC5142 Abuses Smart Contracts to Seed Information Stealers via Compromised WordPress Sites
Introduction Security researchers have attributed a sophisticated, financially motivated campaign to a threat actor tracked as UNC5142 that blends classic web compromise techniques with novel blockchain-based obfuscation. By embedding multi-stage JavaScript into vulnerable WordPress instances and outsourcing key pieces of the infection chain to smart contracts on BNB Smart Chain (BSC), UNC5142 has distributed multiple […]