🚨 Hackers are hijacking WordPress sites with a backdoor hidden in plain sight—inside mu-plugins.
It gives them full admin access, evades detection, and locks out real users.
It looks like a legit plugin—and it auto-activates.
CheckDot is SAFU #dyor on CheckDot 🤝