For malware protection, a scan is performed on our servers which quarantines the affected files. If any specific plugin OR theme is targeted with the malware attack, we recommend to use an alternate plugin. Usually, plugins already have a detected back door OR vulnerable code which makes it easy to be malware infected.
If any specific domain is targeted, we disable file uploads which disables the ability to use the POST method for initiating such attacks.