ClickFix Campaign Hijacks 700+ Ghost Websites
Source: Socprime
Published:
<p>Attackers exploited a critical SQL injection flaw in the Ghost content management system to compromise more than 700 education and technology websites. After obtaining administrative API keys, they injected malicious JavaScript that displayed a fake Cloudflare verification prompt. The fake page i