APT – Attempting to steal your domain

We all hear of APT (advanced persistent threat) and this is a good example of one trying to steal the vl.com domain. Very good read:

Dreamhost account hacked

David Dede

David is a Security Researcher at Sucuri. He spends most of his time dissecting vulnerabilities and security issues. You won't find him on Twitter because he is paranoid about privacy.

Related Tags

Hacked Websites

Backdoor using paste site to host payload

Bruno Zanelato

November 30, 2017

Over the last months, we’ve been talking a lot about new ways to decode complex malwares that involve the usual PHP functions like eval, create_function,…

Read the Post

An Overview of Basic WordPress Hardening

Ben Martin

July 14, 2021

We have discussed in the past how out-of-the-box security configurations tend to not be very secure. This is usually true for all software and WordPress…

Read the Post

Fake Google reCAPTCHA Used in Bank Phishing

Website Security

Hackers Use Fake Google reCAPTCHA to Cloak Banking Malware

Luke Leal

February 21, 2019

The most effective phishing and malware campaigns usually employ one of the following two age-old social engineering techniques: Impersonation These online phishing campaigns impersonate a…

Read the Post

Product Update – New Backups Platform

Victor Santoyo

July 21, 2025

Sucuri is pleased to announce the completion of a product upgrade with our new Backups platform. For those already subscribed to our Backups platform, you…

Read the Post

Labs Notes Monthly Recap – April/2020

Juliana Lewis

May 4, 2020

In 2020, we doubled up our research efforts to report on many new attacks and hacks that we see in the wild. We believe that…

Read the Post

Lightbox Adware - From Innocent Scripts to Malicious Redirects

Why You Should Monitor Your Website

Cesar Anjos

December 15, 2020

In an effort to maintain unauthorized access or profit off a website’s environment long after an initial compromise, attackers commonly leverage a variety of different…

Read the Post

WordPress Redirect Hack via Test0.com/Default7.com

Obfuscated WordPress Malware Dropper

Luke Leal

April 21, 2020

It goes without saying that evasive maneuvering is at the top of a hacker’s priority list. Most often, they try to evade detection by obfuscating…

Read the Post

Fake SSO Used In Multi-Email Provider Phishing

Luke Leal

September 19, 2019

Single sign-on (SSO) allows users to sign into a single account (e.g Google) and access other services like YouTube or Gmail without authenticating with a…

Read the Post

Remote Code Execution Backdoor Uses Unicode Obfuscation and Non-Standard File Extensions

Remote Code Execution Backdoor Uses Unicode Obfuscation & Non-Standard File Extensions

Ben Martin

June 22, 2023

Readers of this blog will know that attackers are constantly finding new ways to hide their malware and avoid detection; after all, that’s what good…

Read the Post

An Indirect Way to Change cPanel Passwords

Luke Leal

October 8, 2019

There’s no doubt that the ubiquitous “forgot your password?” feature has helped many users who’ve misplaced their password or otherwise forgotten it, however—the tradeoff is…

Read the Post

Related Tags

Related Categories

You May Also Like