Website Security News

Simple Include Statement Hides Casino Spam

Kayleigh Martin
November 14, 2024

Just as there are countless types of websites on the internet, there are just as many attackers seeking to exploit them. These attackers develop malicious…

Read the Post

PHP Reinfector and Backdoor Malware Targeting WordPress Sites

PHP Reinfector and Backdoor Malware Target WordPress Sites

Puja Srivastava
November 13, 2024

We recently observed a surge in WordPress websites being infected by a sophisticated PHP reinfector and backdoor malware. While we initially believed that the infection…

Read the Post

Malware Steals Account Credentials

Matt Morrow
November 8, 2024

It’s common for malware to target e-commerce sites, and these attackers are usually seeking to steal credit card details. In most cases, they will insert…

Read the Post

2024 Credit Card Theft Season Arrives

Ben Martin
November 7, 2024

The holiday shopping season is just around the corner, and it’s the time of year the eCommerce website owners need to be most on their…

Read the Post

Sucuri October 2024 Vulnerability Roundup

WordPress Vulnerability & Patch Roundup October 2024

Sucuri Malware Research Team
November 1, 2024

Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…

Read the Post

Rogue Ads Redirect Visitors

Matt Morrow
October 31, 2024

Ads are everywhere. They generate revenue for site owners and can present related content to the website being visited. As detailed in previous articles, bad…

Read the Post

Indonesian Gambling Redirect Hiding in Plain Sight

Kayleigh Martin
October 30, 2024

Many pieces of malware found over the years have been complex and difficult to find. Attackers often obfuscate their code to make it harder to…

Read the Post

Fake “Fix It” Pop-Ups Target WordPress Sites via Malicious Plugin to Download Trojan

Puja Srivastava
October 18, 2024

In our recent investigation, we discovered a new malware campaign targeting WordPress sites through a fake plugin, universal-popup-plugin-v133, which delivers deceptive browser fix pop-ups. This…

Read the Post

WooCommerce Security Essentials for Store Owners

Kyle Knight
October 10, 2024

Running a WooCommerce store is awesome for your business – it opens up a whole world of opportunities. But let’s be honest, it also comes…

Read the Post

Website Security

Unraveling Authentication and Authorization in Web Security

Kyle Knight
October 4, 2024

Authentication and authorization – they sound alike, often get used interchangeably, and are absolutely crucial for web application security. But let’s be real, getting them…

Read the Post

WordPress Vulnerability & Patch Roundup September 2024

Sucuri Malware Research Team
September 30, 2024

Read the Post

Sucuri Blog

Website Security

WordPress Security

Simple Include Statement Hides Casino Spam

HTTP Errors

What is HTTP 504 Gateway Timeout & How to Fix It

Simple Include Statement Hides Casino Spam

PHP Reinfector and Backdoor Malware Target WordPress Sites

Malware Steals Account Credentials

2024 Credit Card Theft Season Arrives

WordPress Vulnerability & Patch Roundup October 2024

Rogue Ads Redirect Visitors

Indonesian Gambling Redirect Hiding in Plain Sight

Fake “Fix It” Pop-Ups Target WordPress Sites via Malicious Plugin to Download Trojan

WooCommerce Security Essentials for Store Owners

WordPress Vulnerability & Patch Roundup September 2024