Quick Analysis of a DDoS Attack Using SSDP

udp-amplification

This post is available in Spanish (Este post está disponible en español). Last week, one of our many clients came under an interesting attack. Enough that it was flagged for human intervention. The interesting aspect of the case was that it was a
Read More

My WordPress Website Was Hacked

Sucuri-My Website was Hacked

Before you freak out, allow me to clarify. It was one of several honeypots we have running. The honeypots are spread across the most commonly employed hosting companies. From Virtual Private Servers (VPS) to shared environments, to managed
Read More

Security Advisory – Akeeba Backup for Joomla!

This post is available in Spanish (Este post está disponible en español). Advisory for: Akeeba for Joomla! Security Risk: Low Exploitation level: Difficult/Remote Vulnerability: Access control bypass If you're a user of the very popular “
Read More

Thoughts on WordPress Security and Vulnerabilities

crossword2-146860_640

As avid readers of this blog know, we've discovered or written about multiple vulnerabilities within the WordPress ecosystem over the last couple of weeks specifically relating to popular plugins. MailPoet and Custom Contact Forms drove the bulk of
Read More

Website Malware: Mobile Redirect to BaDoink Porn App Evolving

php_prepend1

Recently, we wrote about a malware redirection on this blog where the malware was causing compromised sites to redirect their visitors to pornographic content (specifically, the BaDoink app). You can read more about what we found by going to our
Read More

Critical Vulnerability Disclosed on WordPress Custom Contact Forms Plugin

Sucuri - Custom Contact Form - Critical Vulnerability

If you're a using the Custom Contact Forms WordPress plugin, you need to update it right away. During a routine audit for our WAF, we found a critical vulnerability that allows an attacker to download and modify your database remotely (no
Read More

WordPress and Drupal Core Denial Of Service Vulnerability – Moderately Critical

Sucuri - Security Triad

Both WordPress and Drupal are affected by a DoS (denial of service) vulnerability on the PHP XML parser used by their XMLRPC implementations. The issue lies in the XML entity expansion parser that can cause CPU and memory exhaustion and the site's
Read More

Website Security Analysis: A “simple” piece of malware

fake_blogroll6

For regular readers of this blog, there is one constant that pops up over and over: malware gets more complex. When malware researchers, like myself, unlock new obfuscated code, it’s a signal to the black hats that they need to up their game. For me,
Read More

Yoast and Sucuri Partner to Create a Safer Web

Yoast and Sucuri

We're very excited to finally talk about a partnership that's been in the works for a few months and in light of the serious nature of the Security in the WordPress ecosystem it only makes sense. It also comes at a time where we, as an organization,
Read More

Backups – The Forgotten Website Security Pillar

Sucuri - Security Pillars

I travel a lot (a lot might actually be an understatement these days), but the travel always revolves around a couple common threads – namely website security education and awareness. In these travels, regardless of whether I'm speaking with a W
Read More