Zero Day Vulnerability in OpenX Source 2.8.11 and Revive Adserver 3.0.1David DedeDecember 20, 2013 If you are using OpenX or the new Revive Adserver (fork of OpenX), you need to update it ASAP. Florian Sander discovered a serious SQL… Read the Post
Friday the 13th – A Gallery of Webmaster NightmaresDenis SinegubkoDecember 13, 2013 This post is dedicated to all you geeky horror movie fans out there! One morning you open your website and don’t recognize it. Something is… Read the Post
WordPress OptimizePress Theme – File Upload VulnerabilityDenis SinegubkoDecember 12, 2013 We’re a few days short on this, but it’s still worth releasing as the number of attacks against this vulnerability are increasing ten-fold. The folks… Read the Post
Sucuri Labs How to eval() without eval() in PHPPeter GramantikDecember 11, 2013 According to our daily malware analysis experience, we’ve noticed that the bad guys are using obfuscation more and more to hide what they are doing.… Read the Post
How We Decoded Some Nasty Multi-Level Encoded MalwareAnte KresicDecember 9, 2013 From time to time, we come up with interesting bits of malware that are just calling us to decode and learn more about them. This… Read the Post
Phishing Emails to Install Malicious WordPress PluginsDaniel CidDecember 4, 2013 When all else fails, the bad guys can always rely on some basic social engineering tactics with a little hit of phishing!! Over the weekend,… Read the Post