An ongoing malvertising campaign is targeting an unauthenticated stored cross-site scripting (XSS) vulnerability in the Coming Soon Page & Maintenance Mode WordPress plugin. Wordfence’s Defiant Threat Intelligence team found the flaw in the plugin’s version 1.7.8 or below. Malvertising campaign causes compromised WordPress sites “to display unwanted popup ads and redirect visitors to malicious destinations
Source: and sketchy pharmaceutical ads”” Attackers are using a small array of compromised sites to perform these attacks in order to conceal source of their activities.”