TimThumb WebShot Code Execution Exploit (0-day)

If you are still using Timthumb after the serious vulnerability that was found on it last year, you have one more reason to be concerned. A new 0-day was just disclosed on TimThumb's "Webshot" feature that allows for certain commands to be
Read More

SPAM Hack Targets WordPress Core Install Directories

Screen Shot 2014-06-19 at 3.17.17 PM

Do you run your website on WordPress? Have you checked the integrity of your core install lately for SPAM like "Google Pharmacy" stores or other fake stores? We have been tracking and analyzing a growing trend in SEO Spam (a.k.a., Search Engine
Read More

Disclosure: Remote Code Execution Vuln in Disqus

We recently found a security vulnerability in the Disqus Comment System plugin for WordPress. It could, under very specific conditions, allow an attacker to perform arbitrary remote code execution (RCE). In other words, an attacker can do anything he
Read More

Case Study: Complexities of “simple” malware

What you see on these infected websites

You know when you pull a string on a sweater and it just keeps going and going? You wonder when or if it will ever stop? From time to time, that’s how malware can feel. Even if you’re not a website security expert, it’s important to understand just ho
Read More

Is my website hacked? If you have to ask then, “Yes.”

Nordea

The problem with phishing, and therefore the reason so many people have trouble with it, is that the code is fairly benign and can be very difficult to spot because it usually looks almost exactly like legitimate code. Oftentimes, a website owner
Read More

CloudProxy + SPDY = A Faster Website

SPDY

Our CloudProxy Firewall already protects and speeds load times for 1,000's of websites. Now, it'll be even faster. We're happy to announce that we just added support for SPDY (pronounced speedy) across all of our plans and servers. Any website being
Read More

Serious Cross Site Scripting Vulnerability in TweetDeck – Twitter

Screen Shot 2014-06-11 at 9.41.54 AM

This morning as I was logging into various social networks I was presented with a popup with "XSS on Tweet Deck." This obviously set every hair on my neck on fire, it's obviously not the normal welcome screen. After some investigation, I found a
Read More

WordPress Plugin Alert — LoginWall Imposter Exposed

An example of a malware payload

When you work with malware for a while, you start to become very good at pattern recognition. A couple sites in every hundred cleaned might be infected in a similar way and remembering the initial problem helps to quickly solve the problem for the
Read More

Website Firewall Update – Introducing 2FA and More

cloud-2fa

Today, we are launching the new and improved Protected Page capability in our Website Firewall, CloudProxy. It allows for a simple (1-click) activation of secondary authentication methods on any page of your site. It means you can easily add the
Read More

Take Back Your Internet – Demand a Safer Web

Take back the internet

Over the last couple of weeks, we’ve written about malicious redirects pushing users to porn sites, ever more complicated phishing scams being carried out by multiple compromised websites on a single server and about adsense blackmail. We’ve written a
Read More