W3 Total Cache Implementation Vulnerability
Daniel Cid Just in time for Christmas, it was announced on the full disclosure list a security (configuration/implementation) bug on W3 Total cache (W3TC), one of the…
Month: December 2012
11 posts
Website Malware – Drupal Injections Targeting Cookies
Tony Perez Many folks are unfamiliar with the Drupal CMS, it doesn’t enjoy the popularity that some others do like WordPress and Joomla, but its a powerful…
Website Malware – Sharp Increase in SPAM Attacks – WordPress & Joomla
This past week we have seen a sharp increase in the use of old tactics designed to poison your search engine results – also known…
Website Malware – Reality of Cross-Site Contaminations
Sometimes you can’t help but put yourself in the shoes of your clients and skeptics and wonder how many times they roll their eyes at…
WordPress 3.5 Released
Dre Armeda Update like it’s hot! Today marks the release of WordPress 3.5 (Named Elvin after jazz drimmer Elvin Jones), a major release this year for the…
Web Malware – Working with Evil Backdoors – Part III
The most complicated part of our job, when cleaning compromised web sites, is ensuring we find all backdoors. If we miss one, the site can…
ChangeIP (dynamic DNS) malware
If you look at the top domains distributing malware for the last days (and months), whatdo you see in common? #numberofsitesinfected #type #malwaredomain 650 iframe…
Sucuri SiteCheck Malware Scanner Plugin for WordPress
If you’re a WordPress user, love our free SiteCheck scanner, or already use our free SiteCheck Malware Scanner Plugin for WordPress, we have an update…
Sucuri Launches Rapid+ Monitoring
A common feature our clients have been asking us for a long time is the ability to monitor their sites more frequently. For some high…
PSA: December Zero Day’s Announced – MySQL, FreeSSH, Free FTPD
So it looks like we’re closing out the year in style in 2012. This weekend a number of new, very serious, zero-day vulnerabilities were released…
JavaScript Redirect Using Multiple Outdated Websites
This is a doozy. This case was really interesting to remediate as it consisted of multiple outdated websites in a shared environment. We’re talking known…