Major commercial organizations are having their networks infiltrated by the new Cactus ransomware operation through the exploitation of VPN appliance vulnerabilities since March, according to BleepingComputer.
Article Link: More than 2M sites impacted by WordPress plugin with reflected XSS bug | SC Media