A barrage of targeted attacks against vulnerable installations peaked at 1.3 million against 157,000 sites over the weekend, aimed at unauthenticated code execution.
WooCommerce Payments runs on more than 220,000 websites, so security teams that use the platform need to patch immediately or risk unauthenticated administrative takeover of their websites.