A distributor for the Sodinokibi Ransomware is hacking into WordPress sites and injecting JavaScript that displays a fake Q & A forum post over the content of the original site. This fake forum post will contain an “answer”” from the site’s “”admin”” that contains a link to the ransomware installer. In reality
Source: Ransomeware. BleepingComputer was first alerted to this new attack method by Aura