Screenshot of the apache.org defacement (10 years ago)

We recently published a case study of the apache.org defacement that happened 10 years ago. You can read it here: Apache.org defaced – Security archive case study

We didn’t publish the screenshot of the defacement, but our friend @EdiStrosar sent us a link to it. Check it out:
Very funny…

David Dede

David is a Security Researcher at Sucuri. He spends most of his time dissecting vulnerabilities and security issues. You won't find him on Twitter because he is paranoid about privacy.

Related Tags

JQuory: Cryptomining in Nulled Themes and Plugins.

Denis Sinegubko
June 5, 2018

Three months ago b>@ninoseki</b revealed a group of sites with cryptomining scripts inside jquory.js files (yes, jquory instead of jquery). Coinhive(“I2OG8vGGXjF7wMQgL37BhqG5aVPjcoQL”) is trigged by “jquory.js”.…

Read the Post

Magecart stealing credit card information with a single white invisible pixel

Decoding Magecart: Credit Card Skimmers Concealed Through Pixels & Images

Ben Martin
September 12, 2023

MageCart infections most often come in the form of complex, obfuscated JavaScript injected into Magento database tables such as core_config_data, or as malicious plugins or…

Read the Post

Phishing with a COVID-19 Lure

Luke Leal
April 6, 2020

It’s not uncommon to see criminals use disasters or current events to enhance their social engineering tactics, and the recent COVID-19 pandemic is no different.…

Read the Post

How to Know If You Are Under DDoS Attack

Stephen Johnston
July 1, 2019

Nowadays, DDoS is a pretty recognizable term. Though many webmasters don’t know exactly what a DDoS attack is—its method is very subtle to identify—they’re pretty…

Read the Post

Hacked Website Report – 2016/Q1

Daniel Cid
May 18, 2016

Our Remediation group is comprised of two distinct teams, the Incident Response Team (IRT) and Malware Research Team (MRT). These teams work closely with our…

Read the Post

New email course: understanding common website threats and vulnerabilities

New Email Course: Common Website Threats & Malware

Rianna MacLeod
November 14, 2023

The digital world isn’t all rainbows, unicorns, and cat gifs; it also has a dark side. As threats become increasingly sophisticated, website owners and administrators…

Read the Post

WooCommerce Credit Card Stealer Concealed in Fake JPG

WooCommerce Credit Card Skimmers Concealed In Fake Images

Matt Morrow
May 3, 2022

Our research and remediation teams have noticed an increase in WooCommerce credit card skimmers on client sites over the past few years, as detailed in…

Read the Post

Malicious Website Cryptominers from GitHub. Part 2.

Denis Sinegubko
January 3, 2018

Recently we wrote about how GitHub/GitHub.io was used in attacks that injected cryptocurrency miners into compromised websites. Around the same time, we noticed another attack…

Read the Post

Free Sucuri WAF for Medical & Social Services

Chase Watts
March 24, 2020

During the COVID-19 pandemic, there is concern about health systems worldwide. Many people in isolation or self-quarantine are looking for accurate medical information online on…

Read the Post

Phishing Page Targets AT&T’s Employee Multi-Factor Authentication

Luke Leal
September 22, 2020

Employees at companies of all sizes can be targets of phishing attacks, but certain corporations or industries can be more valuable to an attacker than…

Read the Post

Related Tags

Related Categories

You May Also Like