Last month there were a number of interesting website hacks being analyzed by our Malware Research Team (MRT) and Incident Response Teams (IRT).
The Sucuri Labs website provides technical analysis and industry updates directly from our teams on the front line. You can read past monthly recaps for an overview of the posts we’ve released each month, going back to September.
The theme this month seems to be obfuscation – the ways that hackers are evolving their tactics, techniques, and procedures to avoid detection by website owners and security scanners. As expected over the holidays, we continued to see advances in website malware that specifically targets ecommerce websites. This was consistent with the rise in malware campaigns aiming to steal sensitive information such as credit card data, logins, and credentials.