APT – Attempting to steal your domain

We all hear of APT (advanced persistent threat) and this is a good example of one trying to steal the vl.com domain. Very good read:

Dreamhost account hacked

David Dede

David is a Security Researcher at Sucuri. He spends most of his time dissecting vulnerabilities and security issues. You won't find him on Twitter because he is paranoid about privacy.

Related Tags

Hacked Websites

Uncommon Radixes Used in Malware Obfuscation

Denis Sinegubko

March 15, 2019

Some JavaScript features allow for pretty interesting obfuscation techniques. For example, did you know that virtually any English word can be used as a valid…

Read the Post

Optimize Setup to Improve Your Website Resilience for DDoS Attacks

Northon Torga

January 24, 2019

Distributed denial-of-service (DDoS) attacks can disrupt website traffic and impact any business. To help website owners and webmasters improve their website resilience to DDoS attacks,…

Read the Post

Server Side Data Exfiltration via Telegram API

Vulnerable Plugin Exploited in Spam Redirect Campaign

Ben Martin

July 21, 2021

Some weeks ago a critical unauthenticated privilege escalation vulnerability was discovered in old, unpatched versions of the wp-user-avatar plugin. It also allows for arbitrary file…

Read the Post

Cronjob Backdoors

Cesar Anjos

May 3, 2019

Attackers commonly rely on backdoors to easily gain reentry and maintain control over a website. They also use PHP functions to further deepen the level…

Read the Post

Fear, Uncertainty, and Doubt

Ben Martin

November 26, 2018

There’s a term for the practice of scaring potential customers into purchasing products or services they don’t need: FUD; fear, uncertainty, and doubt. This practice…

Read the Post

Hackers Are Just as Vulnerable as You

Luke Leal

June 15, 2018

I came across some interesting defacement pages recently and noticed a peculiar JavaScript injection included within each source code of the defaced websites. As shown…

Read the Post

Quick Guide to Magento Security Patches

Kyle Knight

March 27, 2025

Magento remains a popular ecommerce platform in 2025 and its security patches play a vital role in addressing vulnerabilities that could otherwise be exploited by…

Read the Post

Free Sucuri WAF for Medical & Social Services

Chase Watts

March 24, 2020

During the COVID-19 pandemic, there is concern about health systems worldwide. Many people in isolation or self-quarantine are looking for accurate medical information online on…

Read the Post

The Mystery Admin User

Ben Martin

March 25, 2022

One of our clients recently submitted a malware removal request with a curious problem: A mystery admin user kept getting re-created on their website. Try…

Read the Post

Malicious Magento User Creator

Krasimir Konov

July 21, 2020

We recently found a simple malicious script leveraging Magento’s internal functions to create a new admin user with the admin role “Inchoo” ⁠— probably referring…

Read the Post

Related Tags

Related Categories

You May Also Like