Some additional details on the attacks taking place in the past few days using several WordPress based sites. This attack is being done using the Phoenix Exploit kit.
“The Websense® ThreatSeeker® Network has been tracking an ongoing malicious email campaign in which a recipient is asked to click a link to check a bill mistakenly received by another user. We have been monitoring campaigns of thousands of emails similar to this one for a while now and notice that the Phoenix Exploit Kit is used. The campaign starts with the following email:”
Read the article here.