List of Domains Hosting Webshells for Timthumb Attacks
Daniel Cid We have been tracking TimThumb related attacks for a while and they are still at full force (yes, some people are still using the outdated…
Month: May 2012
13 posts
Sucuri is Hiring: Senior Security Support Analyst
Tony Perez Its that time again, we’re actively looking for a Senior Security Support Analyst to join the family. If you are passionate about web-based malware, we…
How To: Enhance User Security with Dreamhost
If you are using DreamHost, we recommend a few options to increase the security of your sites in their environment: Enhanced User Security It adds…
How To… Submit Infected Site for Review with Bing Blacklisting Authority
Many are not aware that there are many different blacklisting authorities out there, some are more prevalent than others, but each have their own method…
WHMCS Website Hacked and Database Leaked
David Dede The WHMCS website and twitter accounts got compromised yesterday, and their full database (and files) were posted online. Yes, it means that if you have…
The Sucuri Learn Blog
We have long known that the time was approaching in which we would need to improve our level of engagement with the community and start…
Websites Compromised with Fake AV Campaign (Windows Web Secure Kit)
“To help protect your computer, Windows Web Secure Kit have detected trojans and is ready to remove them”. We are seeing many WordPress sites compromised with a malware…
Official WordPress Plugin Directory – Forcing Plugin Updates
Dre Armeda For some while we have wondered what happens when a plugin is removed from the official WordPress plugin directory for security reasons. Historically, we haven’t…
Blog Comments – Analysing 100,000 Comments and Spammers
“Nice blog, thanks for the info” “Awesome site. Great job” “You should take part in a contest for one of the best blogs on the…
Wpstats. org Spam and a Fake Advanced Search Plugin
If you are seeing hidden links in your WordPress site, it could be coming from wpstats.org. On some blackhat spam cases we are analysing, the…
Sucuri WordPress Security Plugin Protects Against PHP-CGI Vulnerability
Today we released an update on the latest PHP CGI vulnerability and provided some additional information that users can use to help protect against it.…