Joomla! 3.3.5 Released – Fixing High Priority Security Issues
Daniel Cid Update: It seems like there is a glitch in the new version and the Joomla team is urging its users not to upgrade yet. From…
Month: September 2014
14 posts
Bash – ShellShocker – Attacks Increase in the Wild – Day 1
The Bash ShellShocker vulnerability was first disclosed to the public yesterday. Just a few hours after the initial release, we started to see a few…
Bash Vulnerability – Shell Shock – Thousands of cPanel Sites are High Risk
The team behind the Bash project (the most common shell used on Linux) recently issued a patch for a serious vulnerability that could allow for…
Security Advisory – Hikashop Extension for Joomla!
Marc-Alexandre Montpas In a routine audit of our Website Firewall we discovered a serious vulnerability within the Hikashop ecommerce product for Joomla! allowing remote code execution on…
Website Malware – Curious .htaccess Conditional Redirect Case
Fioravante Souza I really enjoy when I see different types of conditional redirects on compromised sites. They are really hard to detect and always lead to interesting…
Conditional Malicious iFrame Targeting WordPress Web Sites
We have an email address, labs@sucuri.net where we receive multiple questions a day about various forms of malware. One of the most common questions happen…
WordFence WordPress Security Plugin Pushes a Security Update
David Dede If you are one of the many users of the WordPress Security Plugin, WordFence, we highly encourage you to update. They recently pushed out a…
The WordPress Security Plugin Ecosystem
Tony Perez As a child, did you ever play that game where you sit in a circle and one person is responsible for whispering something into one…
Website Security – Compromised Website Used To Hack Home Routers
What if we told you that a compromised website has the ability to hack your home router? Yesterday we were notified that a popular newspaper…
Security Advisory – VirtueMart Extension for Joomla!
If you’re using the popular VirtueMart Joomla! extension (more than 3,500,000 downloads), you should update right away. During a routine audit for our Website Firewall (WAF)…
Microsoft IIS Web Server – CMD Process Contributing to Website Reinfections
We often spend a lot of time talking about application level malware, but from time to time we do like to dabble in the ever…