VBulleting SQL injection vulnerability – Update now
David Dede A serious SQL injection vulnerability was reported on Vbulletin (4.0.x, 4.1.0, 4.1.1 and 4.1.2) last month and we are starting to see it being used…
Month: May 2011
10 posts
Understanding .htaccess attacks – Part 1
Attackers have been using the .htaccess file for a while. They use this file to hide malware, to redirect search engines to their own sites…
WordPress 3.1.3 available (security fixes)
If you are using WordPress, make sure to upgrade it now. The version 3.1.3 was just released with a few security fixes: * Various security…
LizaMoon SQL injections (ur.php) – Now vcvsta.com, asweds.com, etc.
A couple of months ago the Lizamoon malware / Mass SQL injection was getting a lot of news coverage that it could be affecting hundreds…
osCommerce malware: Cannot redeclare corelibrarieshandler
We have been posting for a while about attacks targeting and infecting thousands of osCommerce sites (CreateCSS, div_colors, etc) and the importance of keeping it…
Ask Sucuri: Why Does My Site Keep Getting Reinfected?
Daniel Cid If you have any question about malware, blacklisting, or security in general, send it to us: contact@sucuri.net and we will answer here. Question: Why does…
LastPass hacked? Forcing users to change their master passwords
If you are a LastPass user, you will be forced to change your master password in order to continue using the service. We just read…
WP-DBManager Security update (serious issue)
Just a quick note that if you are using the WordPress WP-DBManager plugin, make sure to update it as soon as possible. Old versions of…
Are WordPress users taking care of their security? State of Blog Security – Part I
Almost two years ago we published an article on the “state of blog security” (focused on WordPress) where we checked the percentage of blogs that…
TheWebbyAwards hacked and compromised with Blackhat SEO
The WebbyAwards web site ( www.webbyawards.com/ ) is currently hacked and compromised with Blackhat SEO. If you try to search for it on Google you…