A new malware campaign, called ClickFix, has infected over 6,000 WordPress sites in a single day by using fake plug-ins to spread infostealing malware. Attackers exploited stolen WordPress admin credentials to install seemingly legitimate plug-ins, which injected malicious scripts that delivered fake browser update prompts to users. The campaign, flagged by GoDaddy, uses automation to generate numerous malicious plug-ins, making it harder to detect. The infostealers compromise systems by tricking users into executing malicious code, with potential credential theft as the initial point of entry.