Website Security

SSH 0-day exploit rumors

People are going crazy with the SSH 0-day exploit rumors. Some are even considering to switch back to telnet because of that.

Finally, an official voice from Damien Miller of the SSH development team suggesting that it is just FUD and probably not real (http://lwn.net/Articles/340483/). Quoting him:

In particular, I spent some time analysing a packet trace that he provided, but it seems to consist of simple brute-force attacks.
So, I’m not pursuaded that an 0day exists at all. The only evidence so
far are some anonymous rumours and unverifiable intrusion transcripts.

Initial rumors from ISC: isc.sans.org/diary.html?storyid=6742

David Dede

David is a Security Researcher at Sucuri. He spends most of his time dissecting vulnerabilities and security issues. You won't find him on Twitter because he is paranoid about privacy.

“Loader for Secured Files” and arrayed b374k shell encoding

Luke Leal
July 27, 2019

This file (33×77.php) was detected in the document root of a website during a website cleanup for a client. It demonstrates how hackers sometimes use…

Read the Post

From Baidu to Google’s Open Redirects

Denis Sinegubko
April 18, 2018

Last week, we described how an ongoing massive malware campaign began using Baidu search result links to redirect people to various ad and scam pages.…

Read the Post

Hardening WordPress on Apache, Nginx, or IIS

Alycia Mitchell
July 23, 2018

Server configuration files allow administrators to restrict access and make changes at the server level. Depending on the server software you use, there are different…

Read the Post

PCI for SMB: Requirement 7 & 8 – Implement Strong Access Control Measures

Victor Santoyo
September 28, 2018

Update: Read our new PCI Compliance guide. This is the fifth post in a series of articles on understanding the Payment Card Industry Data Security…

Read the Post

RealStatistics Goes TrafficAnalytics

Rodrigo Escobar
February 2, 2017

In the last few months, our Incident Response Team detected an interesting malicious code that affected a high number of websites. This malware is a…

Read the Post

Unsuccessfully Defaced Websites

Luke Leal
September 13, 2018

Defaced websites are a type of hack that is easy to notice and a pain for website owners. Recently, we came across some defacement pages…

Read the Post

New SocGholish Malware Variant Uses Zip Compression & Evasive Techniques

Ben Martin
November 15, 2022

Readers of this blog should already be familiar with SocGholish: a widespread, years-long malware campaign aimed at pushing fake browser updates to unsuspecting web users.…

Read the Post

What Motivates Website Malware Attacks?

Ben Martin
May 28, 2025

The depiction in the media of hackers tends to be that of balaclava-wearing villains who type furiously in a dark basement, motivated by nothing but…

Read the Post

Shoesinfy Spam Injections

Denis Sinegubko
July 24, 2019

Lately, we’ve seen quite a few sites with injected spammy links that follow this format: <div style=”position: absolute; opacity: 0.001; z-index: 10; filter: alpha(opacity=0);”> <a…

Read the Post

One, two, three… CC stolen!

Fernando Barbosa
March 7, 2017

Attackers work hard to make their code very well hidden from the victim and antivirus products, however they might leave some fingerprints (usually not on…

Read the Post

Related Categories

You May Also Like