Make sure all your themes and plugins are updated. Harden your website and your server account - see our post on
WordPress Hardening. We are not placing here the cleanup steps as the infection can take change variants depending on the malicious campaign settings. If you need help with removing this or any other malware, and the most important with protecting your website from new attacks like the one described above, just select from our
anti-malware plans.