WordPress Database Table and wp_head Injections
Daniel Cid There are multiple places where a malware injection can be hidden on a web site. On WordPress, for example, it can be hidden inside the…
Month: September 2013
8 posts
CloudProxy WAF – September Report
*By Tony Perez and Daniel Cid As many of you are aware we released a website protection tool, CloudProxy WAF/IDS, at the beginning of the…
Sucuri Expands Research Efforts with Acquisition of Unmask Parasites
Dre Armeda Our goal at Sucuri is to be the best website security company of today and in the future. To help build on our existing research…
Ask Sucuri: Non-Alphanumeric Backdoors
If you have any questions about malware, blacklisting, or security in general, send them to contact@sucuri.net and we will write a post about it and…
WordPress 3.6.1 Released – Includes Security Fixes
The WordPress team just pushed out a new version of WordPress. WordPress 3.6.1 is a maintenance release that includes some security bug fixes. Straight from…
Security Archive – Case Study: phpbb.com Compromised
Security Archive: It is important to remember past security incidents to make sure we don’t commit the same mistakes over and over again. The idea…
Over 10% of Alexa TOP Million Websites Found Not Safe – Infographic Report
We scan a lot of websites per day. Through our daily work we see all sizes and types of websites compromised, blacklisted, and filled with…
Big Increase in Distributed Brute Force Attacks Against Joomla Websites
Update: Brute force protection now available: http://cloudproxy.sucuri.net/brute-force-protection A few months ago, we discussed and published details about a very large brute force attack targeting WordPress…