CryptoPHP: "malicious plugins + themes for #WordPress, #Joomla and #Drupal. Simple social engineering trick: lured site admins to download pirated versions of commercial CMS plugins and themes for free" http://thehackernews.com/2014/11/cryptophp-backdoored-cms-plugins-themes.html cc @question