Labs Notes Monthly Recap – June/2017

This month, our Malware Research and Incident Response teams wrote about redirects that deliver malware and ads to visitors, as well as a backdoor method that attempts to hide from webmasters by using undefined variables.

Sucuri Labs provides website malware research updates directly from our teams on the front line. You can read past monthly recaps to catch up on trends we look at every month.

Estevao Avillez

Estevao Avillez is Sucuri’s Senior Director of Security Research, who joined the company in 2013. Estevao’s main responsibilities include leading the Research Group, which includes the Malware, Vulnerability and WAF/Sucuri Infrastructure. His professional experience covers 15 years with planning, project and operations management. Estevao has also worked in various areas such as logistics and supply chain, media and communication, telecommunications, and trading relationships with customers. He’s worked as a consultant in financial, strategic and operational management. When Estevao isn’t keeping our customers safe, you might find him taking care of his kids and running. Connect with him on Twitter.

Related Tags

Hacked Website Report – 2016/Q2

Daniel Cid
September 21, 2016

Today we’re releasing our quarterly Hacked Website Report for 2016/Q2. The data in this report is based on compromised websites we worked on, with insights…

Read the Post

How Malware Gets On Your Website

Ashley Sand
December 13, 2021

Almost since the Internet’s inception malware infections have kept pace to be the biggest nuisance a site owner experiences. With an ever growing amount of…

Read the Post

What is a WAF?

Juliana Lewis
January 29, 2018

Have you ever wondered what WAF means? WAF stands for Website Application Firewall. In order to make it simple to understand, imagine your website as…

Read the Post

WordPress Hacked: WHat to do when your site is compromised

WordPress User Enumeration: Risks & Mitigation Steps

Rianna MacLeod
July 3, 2024

User enumeration is a technique used by attackers to discover valid usernames associated with a CMS or website. By exploiting certain features, bad actors can…

Read the Post

Bad Paths & The Importance of Using Valid URL Characters

Marc Kranat
January 10, 2023

To ensure that your web files and pages are accessible to a wide range of users with various different devices and operating systems, it’s important…

Read the Post

Sucuri Can Help Secure Your Client Websites

Stephen Johnston
August 19, 2019

At Sucuri, we understand that most web professionals and web agencies ultimately need to make their clients part of the decision-making process for choosing to…

Read the Post

Understanding SSRF: Abusing Server Trust from the Inside Out

Kyle Knight
June 11, 2025

In our daily interactions online, trust is a fundamental currency. We trust servers to handle our data, process our requests, and reliably deliver content. But…

Read the Post

The Anatomy of Website Malware: An Introduction

Peter Gramantik
February 7, 2019

We see a lot of files infected by website malware on a daily basis here at Sucuri Labs. What we don’t see is very many…

Read the Post

Web shell: Types, Detection & Mitigation

Web Shells: Types, Mitigation & Removal

Cesar Anjos
April 8, 2024

Web shells are malicious scripts that give attackers persistent access to compromised web servers, enabling them to execute commands and control the server remotely. These…

Read the Post

Spotlight: How a Digital Marketing Agency Secures Client Sites

Nikki Gerren
June 2, 2017

Based in Melbourne, Australia for over 17 years, 24Digital knows what it takes to succeed in the ever-evolving digital marketing space which is no longer…

Read the Post

Related Tags

Related Categories

You May Also Like