Timthumb.php Mass Infection – Aftermath – Part I
David Dede If you use WordPress you’re probably aware of the mass infection caused by a vulnerability in the timthumb.php script, a photo manipulation script included in…
Month: October 2011
7 posts
MyBB web site and downloads compromised
It’s not good when your site gets infected with malware, specially if you’re a provider of software to many. If you are using MyBB (forum…
Remove Unused/Testing/Debug Software From Your Site
Dre Armeda We constantly see sites hacked due to vulnerabilities in various tools. In most cases, site owners don’t even realize they are there, or don’t even…
Evil backdoors – Part II
A few months ago we did a post about backdoors, explaining how they work and how to look for them. If you didn’t read it,…
Mass infections from jjghui.com/urchin.js (SQL injection)
We are seeing many sites compromised with malware from jjghui.com/urchin.js. Most of them are IIS/ASP sites and the infection method seems to be similar to…
Malware on /etc/mailquota
We are seeing an interesting trend lately. A site gets compromised and starts to distribute malware to its users. The webmaster (owner of the site)…
Malware Infections from rebotstat dot com
We are starting to share some of our research and view of web-based malware online: http://sucuri.net/global. The #1 infection we are seeing in the last…