We just added two tools to generate OSSEC rules online.
You May Also Like
Phishing with a COVID-19 Lure
Luke Leal
- April 6, 2020
It’s not uncommon to see criminals use disasters or current events to enhance their social engineering tactics, and the recent COVID-19 pandemic is no different.…
Web Crawler & User Agent Blocking Techniques
Luke Leal
- August 14, 2020
This is a simple script that allows hackers to block specific crawlers based upon website requests from specific user-agents. This is useful when you don’t…
WordPress Redirect Hack via Test0.com/Default7.com
Denis Sinegubko
- June 4, 2021
Malicious redirect is a type of hack where website visitors are automatically redirected to some third-party website: usually it’s some malicious resource, scam site or…
Data URLs and HTML Entities in New WordPress Malware
Denis Sinegubko
- October 30, 2019
Last week, an ongoing WordPress malware campaign started a new wave which included a variety of experimental injection types. Scripts as Data URLs The first…
Fake relatable domain used to distribute ads
Krasimir Konov
- April 26, 2019
Malicious users try to hide their malicious scripts in many ways these days, some more clever then others, in this case we look at a…
Why Do Hackers Hack? – 3 Reasons Explained
Pilar Garcia
- June 14, 2019
When considering why hackers are attacking websites, you might think that there’s a specific reason they target you as a website owner—your business, your reputation,…
Infected WordPress Site Reveals Malicious C&C Script
Krasimir Konov
- July 12, 2022
Bitcoin prices are down 60% year to date, trading far from the all-time highs of $69,000 seen last November. Some altcoins have plummeted even farther…
Black Friday/Cyber Monday Ecommerce Security Threats
Luke Leal
- November 25, 2019
With the end of November comes the height of the holiday shopping season — specifically Black Friday and Cyber Monday sales, which typically span the…
Bogus CSS Injection Leads to Stolen Credit Card Details
Ben Martin
- January 5, 2021
A client recently reported their customers were receiving antivirus warnings when trying to access and purchase products from a Magento ecommerce website. This is almost…
Mail from the ‘Boss’ – A Classic Example of a $_POST Mailer Stealing CC Data
Yuliyan Tsvetkov
- March 8, 2018
We often find mailer scripts while cleaning malicious code from websites. Some of them are easily discovered, while others are obfuscated or heavily encoded. These…