Security Advisory – VirtueMart Extension for Joomla!


Advisory for: VirtueMart for Joomla! Security Risk: High Exploitation level: Easy/Remote Vulnerability: Access control bypass / Increase of Privilege Updated Version: 2.6.10c Patched Version: 2.6.8c If you’re using the popular V
Read More

Microsoft IIS Web Server – CMD Process Contributing to Website Reinfections


We often spend a lot of time talking about application level malware, but from time to time we do like to dabble in the ever so interesting web server infections as well. It is one of those things that comes with the job. Today, we're going to chat
Read More

Anatomy of 2,000 Compromised Web Servers used in DDoS Attack

Sucuri - Layer 7 DDOS Attack  Source

This post is available in Spanish (Este post está disponible en español). One of our clients was being attacked by a layer-7 DDoS attack for more than a week. The attack was generating around 5,000 HTTP requests per second, which took his site a
Read More

Slider Revolution Plugin Critical Vulnerability Being Exploited

Sucuri - WordPress Plugin Disclosure - Slider Revolution Attack Trend

This post is available in Spanish (Este post está disponible en español). Mika Epstein, Ipstenu, of Dreamhost, notified us today of a serious vulnerability in the WordPress Slider Revolution Premium plugin which was patched silently. It t
Read More

Quick Analysis of a DDoS Attack Using SSDP


This post is available in Spanish (Este post está disponible en español). Last week, one of our many clients came under an interesting attack. Enough that it was flagged for human intervention. The interesting aspect of the case was that it was a
Read More

My WordPress Website Was Hacked

Sucuri-My Website was Hacked

Before you freak out, allow me to clarify. It was one of several honeypots we have running. The honeypots are spread across the most commonly employed hosting companies. From Virtual Private Servers (VPS) to shared environments, to managed
Read More

Security Advisory – Akeeba Backup for Joomla!

This post is available in Spanish (Este post está disponible en español). Advisory for: Akeeba for Joomla! Security Risk: Low Exploitation level: Difficult/Remote Vulnerability: Access control bypass If you're a user of the very popular “
Read More

Thoughts on WordPress Security and Vulnerabilities


As avid readers of this blog know, we've discovered or written about multiple vulnerabilities within the WordPress ecosystem over the last couple of weeks specifically relating to popular plugins. MailPoet and Custom Contact Forms drove the bulk of
Read More

Website Malware: Mobile Redirect to BaDoink Porn App Evolving


Recently, we wrote about a malware redirection on this blog where the malware was causing compromised sites to redirect their visitors to pornographic content (specifically, the BaDoink app). You can read more about what we found by going to our
Read More

Critical Vulnerability Disclosed on WordPress Custom Contact Forms Plugin

Sucuri - Custom Contact Form - Critical Vulnerability

If you're a using the Custom Contact Forms WordPress plugin, you need to update it right away. During a routine audit for our WAF, we found a critical vulnerability that allows an attacker to download and modify your database remotely (no
Read More