We all hear of APT (advanced persistent threat) and this is a good example of one trying to steal the vl.com domain. Very good read:
You May Also Like
Magento Supply Chain Attack Targets Extension Developer FishPig
- Ben Martin
- September 15, 2022
Magento store owners using the popular FishPig extensions should be wary of a recent supply chain attack which compromised their software repository. FishPig released a…
COVID-19 Chloroquine Pharmaspam
- Luke Leal
- August 20, 2020
A recent SiteCheck scan of an organization’s website showed an interesting pharmacy spam injection targeting COVID-19-related pages of websites. The HTML that was flagged by…
Steps to Keep Your Site Clean: Updates
- Celise Davison
- April 24, 2018
This is the second post of a series about Steps to Keep Your Site Clean. In the first post, we talked about Access Points; here we…
Phishing & Malspam with Leaf PHPMailer
- Luke Leal
- January 26, 2021
It’s common knowledge that attackers often use email as a delivery mechanism for their malicious activity — which can range from enticing victims to click…
How to Find & Remove Malware in Favicon (.ico) Files
- Rianna MacLeod
- September 6, 2022
When a website is hacked symptoms can sometimes include unexpected, unfamiliar and strangely located favicon or .ico files. Other symptoms might include: ”This site may…
Malicious Pastebin Replacement for jQuery
- Denis Sinegubko
- January 6, 2016
Website hackers are always changing tactics and borrowing ideas from each other. One of the challenges of website security is staying on top of those…
Webutation Distributing Malware Through Safety Badge
- Krasimir Konov
- July 16, 2015
If you are using the Webutation badge on your site, remove it now. It appears they got hacked and are distributing malware to mobile devices…
Shoesinfy Spam Injections
- Denis Sinegubko
- July 24, 2019
Lately, we’ve seen quite a few sites with injected spammy links that follow this format: <div style=”position: absolute; opacity: 0.001; z-index: 10; filter: alpha(opacity=0);”> <a…
GitHub Hosts Infostealer
- Denis Sinegubko
- March 15, 2018
A few months ago, we reported on how cybercriminals were using GitHub to load a variety of cryptominers on hacked websites. We have now discovered…
What is FTP? Why use it to clean hacked websites?
- Juliana Lewis
- May 18, 2020
The File Transfer Protocol (FTP) is a network protocol used to transfer files between a client server and a network. In other words, it is…