WordPress Hijacked to Spread VexTrio Scam Globally

Cybercriminals are exploiting legitimate WordPress websites in a growing scheme tied to the VexTrio Viper Traffic Distribution Service (TDS). The operation, which security researchers describe as highly organized, uses WordPress hijacked to spread malicious software and scams across a global network.

VexTrio appears to operate alongside other TDS platforms, including Help TDS and Disposable TDS. These services distribute harmful content by redirecting unsuspecting users through compromised web infrastructure. The attackers use deceptive advertising networks and malware-laden pages to carry out their objectives.

Researchers say the group functions as a malicious adtech enterprise, deploying advanced tools to maximize reach and impact. The campaign relies heavily on WordPress hijacked to spread malware, targeting users through seemingly benign sites.

The scale and coordination of this operation point to a sprawling, multi-layered network. Authorities and cybersecurity experts continue to investigate the infrastructure behind these attacks.

Read the full report here: https://thehackernews.com/2025/06/wordpress-sites-turned-weapon-how.html