Blog Search
Like Box
Comments
- The WPCandy Podcast #32: "Uncle Ben's plugin list" | WPCandy on Official WordPress Plugin Directory – Forcing Plugin Updates
- Is your website clean? | Life Currents on Links Injection on WordPress – Blackhat SEO Spam (basicpills) update
- Technology News on Blog Comments – Analysing 100,000 Comments and Spammers
- user on Removing Malware from a WordPress blog – Case Study
- Brand Development on Walmart web site hacked and hosting spam
Tags
alexa apache ask awareness backdoors blacklist blacklisted bluehost data dns education fox godaddy google guides hacked history honeypot htaccess iis joomla logs malware malware_updates netsol openx oscommerce ossec passwords pharma phishing php plugin scan security spam stats sucuri twitter updates vbulletin virus vulnerability walmart wordpressArchives
- May 2012 (7)
- April 2012 (15)
- March 2012 (12)
- February 2012 (6)
- January 2012 (6)
- December 2011 (4)
- November 2011 (4)
- October 2011 (7)
- September 2011 (8)
- August 2011 (16)
- July 2011 (5)
- June 2011 (10)
- May 2011 (10)
- April 2011 (15)
- March 2011 (18)
- February 2011 (13)
- January 2011 (7)
- December 2010 (7)
- November 2010 (9)
- October 2010 (12)
- September 2010 (10)
- August 2010 (7)
- July 2010 (10)
- June 2010 (15)
- May 2010 (19)
- April 2010 (16)
- March 2010 (15)
- February 2010 (8)
- January 2010 (7)
- December 2009 (4)
- November 2009 (1)
- October 2009 (2)
- September 2009 (1)
- August 2009 (6)
- July 2009 (11)
- June 2009 (7)
- May 2009 (4)
- April 2009 (1)
Author Archives: David Dede
Ask Sucuri: How Long Does It Take For a Site To Be Removed From Google’s Blacklist? – Updated
If you have any questions about malware, blacklisting, or security in general, send it over to us: contact@sucuri.net and we will answer here. For all the “Ask Sucuri” answers, click here This is an update to our previous post about … Read more
WordPress 3.3 is Out
For all our WordPress users, please remember to update to WordPress 3.3 that was just released. It should be a quick 1-click process in your dashboard, and nobody have an excuse not to do so. And if you are currently … Read more
Posted in wordpress
Leave a comment
The New (and Old) .htaccess Attacks – Now Using .in Domains
We have been talking about .htaccess redirections for a while. A site gets compromised and the attackers modify the .htaccess file(s) to redirect any search engine traffic to a different (malicious) page that attempts to compromise the browser / computer … Read more
Posted in hacked, htaccess, malware, malware_updates, wordpress
Tagged hacked, htaccess, malware, malware_updates, vulnerability, wordpress
2 Comments
Dre Armeda: WordPress End-User Security
Sucuri Co-Founder Dre Armeda did a great presentation at WordCamp Chicago about end-user security for WordPress users. Check out the video here: Dre will also be speaking at WordCamp Las Vegas 2011, make sure to say hi if you’re attending.
Joomla 1.5.25/1.7.3 Released (Security Update)
If you are using Joomla, now is the time to update it. A new version was just released for the 1.5.x and 1.7.x branches fixing a high priority security issue that will allow remote users to change other users passwords … Read more
Htaccess Redirection to Sweepstakesandcontestsinfo dot com
Last week we started to see a large increase in the number of sites compromised with a .htaccess redirection to http://sweepstakesandcontestsinfo.com/nl-in.php?nnn=555. This domain has been used to distribute malware for a while (generally through javascript injections), but only in the … Read more
Posted in hacked, htaccess, malware, malware_updates, vulnerability
Tagged hacked, htaccess, malware, malware_updates, vulnerability
3 Comments
Timthumb.php Mass Infection – Aftermath – Part I
If you use WordPress you’re probably aware of the mass infection caused by a vulnerability in the timthumb.php script, a photo manipulation script included in many themes and plugins. Sites were compromised with anything from malware to Blackhat SEO spam, … Read more
Posted in hacked, malware, malware_updates, vulnerability, wordpress
Tagged hacked, malware, malware_updates, vulnerability, wordpress
28 Comments
MyBB web site and downloads compromised
It’s not good when your site gets infected with malware, specially if you’re a provider of software to many. If you are using MyBB (forum software), please be aware that their web site hacked and the software download packages compromised: … Read more
Evil backdoors – Part II
A few months ago we did a post about backdoors, explaining how they work and how to look for them. If you didn’t read it, take a read here: ASK Sucuri: What about the backdoors? However, we still see on … Read more
Posted in backdoors, hacked, malware, malware_updates, wordpress
Tagged backdoors, hacked, malware, malware_updates
15 Comments
Mass infections from jjghui.com/urchin.js (SQL injection)
We are seeing many sites compromised with malware from jjghui.com/urchin.js. Most of them are IIS/ASP sites and the infection method seems to be similar to the Lizamoon mass infections from a few months ago (SQL injection). According to Google, almost … Read more
Posted in hacked, iis, malware, malware_updates, vulnerability
Tagged hacked, iis, malware, malware_updates, vulnerability
8 Comments
