Another Magento CC stealer
Cesar Anjos Lately we’ve been analysing multiple credit card stealers for Magento. We are seeing an increase trend there as attackers can more easily monetize a compromised…
Month: June 2016
14 posts
200k+ Parked/Expired Domains Used to Distribute Malicious Ads
Douglas Santos Recently we wrote about domain renewal scams that used real paper letters to tricks site owners into transferring their domains and renewing them for 3-4x…
Large CCTV Botnet Leveraged in DDoS Attacks
Daniel Cid Our security operations team investigate and mitigate multiple denial-of-service (DDoS) attacks every single day. One recent case caught our attention because of the intensity and duration of…
PCI Compliance for eCommerce – Choosing Between SAQ A and A-EP
Tony Perez Update: Read our new PCI Compliance guide. The Payment Card Industry Data Security Standards (PCI DSS) is a set of security standards established in a…
Domain Renewal Phishing Scams
Alycia Mitchell Update: I received another letter this year (May 2017). Seems iDNS Canada is still in business. When I received a letter in the mail asking…
SEO Poisoning on nulled templates
We at Sucuri, always stress the risks associated with using themes, plugins or any add-on downloaded from unofficial sources (Nulled Versions). During our investigation process,…
The Growing DDoS Threat to Website Owners
As website attacks continue to evolve, we see growing levels of sophistication in the way attackers are expanding the economics of their industry. The monetization…
MiniCMS as a Spam Site Generator
SEO spam is very common for a reason — money. Spammers are paid to promote websites on Google. We deal with lots of SEO spam…
Blacklist Monitoring for Hackers and Webmasters
Krasimir Konov An infected site can be efficient for cyber-criminals unless it gets blacklisted. Traffic significantly drops when a URL is on the Google’s Safe Browsing list.…
Phishers Abuse Hosting Temporary URLs
Denis Sinegubko Recently we told you how hackers use alternative domain names provided by web hosts to make their URLs look less suspicious. This time we’ll show…
Another sample of a Magento compromise for profit
John Castro We are often seeing malicious code being used to steal credit card details and sensitive information from compromised Magento sites, but this one caught our…