I have the latest WP version and just had a malicious code injection.
I wonder, how can that happen, and what can be done for future protection?
On 2 domains some directories had been tempered with and had a brand new change date.
They were on one domain:
wp-content/themes/twentysixteen
wp-content/themes/twentysixteen/template-parts
The twentysixteen theme was installed, but another theme was active. It was updated to the latest version though (WP updates themes no matter they are active or not)
The other domain:
wp-includes/rest-api
wp-content/plugins/wp-members/admin
wp-members is popular plugin that gets often updated?
So how to prevent such malicious code injections? Or if they happen, how to notice them?