Security expert re: 600,000 WordPress sites attacked due to critical vulnerability (RCE flaw)

More than 600,000 WordPress sites running vulnerable File Manager plugin versions are being attacked due to a critical remote code execution flaw,  and the attackers have also been seen protecting the sites they compromised from other bad actors’ attacks.