pipdig, WordPress theme and plugin provider, caught distributing malicious code to customers and DDoSing competitors