A malicious GitHub repository disguised as a WordPress tool has led to the exfiltration of over 390,000 credentials, according to a report by Datadog Security Labs. The repository, named “yawpp,” cla…