An unknown threat actor has compromised five (and possibly more) WordPress plugins and injected them with code that creates a new admin account, effectively allowing them complete control over WordPress installations / websites.“In addition, it appears the threat actor also injected malicious JavaScript into the footer of websites that appears…