Zero Day Vulnerability in OpenX Source 2.8.11 and Revive Adserver 3.0.1
David Dede If you are using OpenX or the new Revive Adserver (fork of OpenX), you need to update it ASAP. Florian Sander discovered a serious SQL…
Month: December 2013
6 posts
Friday the 13th – A Gallery of Webmaster Nightmares
Denis Sinegubko This post is dedicated to all you geeky horror movie fans out there! One morning you open your website and don’t recognize it. Something is…
WordPress OptimizePress Theme – File Upload Vulnerability
We’re a few days short on this, but it’s still worth releasing as the number of attacks against this vulnerability are increasing ten-fold. The folks…
How to eval() without eval() in PHP
Peter Gramantik According to our daily malware analysis experience, we’ve noticed that the bad guys are using obfuscation more and more to hide what they are doing.…
How We Decoded Some Nasty Multi-Level Encoded Malware
Ante Kresic From time to time, we come up with interesting bits of malware that are just calling us to decode and learn more about them. This…
Phishing Emails to Install Malicious WordPress Plugins
Daniel Cid When all else fails, the bad guys can always rely on some basic social engineering tactics with a little hit of phishing!! Over the weekend,…