Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
  • Immediate Help
Login
Login

New Customer?

Sign up now.
  • Submit a ticket
  • Knowledge base
  • Chat now

Sucuri Blog

The latest news in website malware infections, WordPress vulnerabilities, troubleshooting errors, and security best practices.
Website Security

1018 posts

Understanding SSRF

Understanding SSRF: Abusing Server Trust from the Inside Out

  • Kyle Knight
  • June 11, 2025
WordPress Security

657 posts

Sucuri Vulnerability Roundup - June 2025

Vulnerability & Patch Roundup — June 2025

  • Sucuri Malware Research Team
  • June 30, 2025
HTTP Errors

8 posts

Easy Guide to save HAR Files and Console Logs for Troubleshooting

Easy Guide to Saving HAR Files and Console Logs for Troubleshooting

  • Maninder Toor
  • April 22, 2025
Sucuri Vulnerability Roundup - June 2025
  • Security Advisory
  • Security Education
  • WordPress Security

Vulnerability & Patch Roundup — June 2025

  • Sucuri Malware Research Team
  • June 30, 2025
Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…
Read the Post
Stealthy WordPress Malware Drops Windows Trojan via PHP Backdoor
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Stealthy WordPress Malware Drops Windows Trojan via PHP Backdoor

  • Puja Srivastava
  • June 27, 2025
Last month, we encountered a particularly interesting and complex malware case that stood out from the usual infections we see in compromised WordPress websites. At…
Read the Post
The Case of Hidden Spam Pages
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

The Case of Hidden Spam Pages

  • Ben Martin
  • June 25, 2025
Spammy posts and pages being placed on WordPress websites is one of the most common infections that we come across. The reason being is that…
Read the Post
Malicious WordPress Plugin Creates Hidden Admin User Backdoor
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Malicious WordPress Plugin Creates Hidden Admin User Backdoor

  • Matt Morrow
  • June 20, 2025
I recently wrote about a case where a malicious plugin was used to steal admin credentials. Here we will examine yet another malicious plugin that…
Read the Post
Analysis of a Malicious WordPress Plugin The Covert Redirector
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Analysis of a Malicious WordPress Plugin: The Covert Redirector

  • Puja Srivastava
  • June 18, 2025
A few weeks ago, we received a support request from a website owner who was experiencing unexpected redirects. Visitors landed on the website normally, but…
Read the Post
Understanding SSRF
  • Security Education
  • Website Security

Understanding SSRF: Abusing Server Trust from the Inside Out

  • Kyle Knight
  • June 11, 2025
In our daily interactions online, trust is a fundamental currency. We trust servers to handle our data, process our requests, and reliably deliver content. But…
Read the Post
Fake WordPress Caching Plugin Used to Steal Admin Credentials
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Fake WordPress Caching Plugin Used to Steal Admin Credentials

  • Matt Morrow
  • June 4, 2025
A common trend we see is that bad actors will upload malicious plugins to WordPress sites. These plugins serve a wide variety of functions from…
Read the Post
Sucuri WordPress Vulnerability Roundup May 2025
  • Security Advisory
  • Security Education
  • WordPress Security

Vulnerability & Patch Roundup — May 2025

  • Sucuri Malware Research Team
  • May 30, 2025
Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…
Read the Post
What Motivates Website Malware Attacks
  • Security Education
  • Website Malware Infections
  • Website Security

What Motivates Website Malware Attacks?

  • Ben Martin
  • May 28, 2025
The depiction in the media of hackers tends to be that of balaclava-wearing villains who type furiously in a dark basement, motivated by nothing but…
Read the Post
Fake Java Update Popup Found in Malicious WordPress Plugin
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Fake Java Update Popup Found in Malicious WordPress Plugin

  • Puja Srivastava
  • May 27, 2025
We recently assisted a customer who reported a persistent and concerning “Java Update” pop-up appearing on their WordPress website. This type of deceptive notification is…
Read the Post
Fake Google Meet Page Tricks Users into Running PowerShell Malware
  • Security Advisory
  • Website Malware Infections
  • WordPress Security

Fake Google Meet Page Tricks Users into Running PowerShell Malware

  • Puja Srivastava
  • May 23, 2025
Last month, a customer reached out to us after noticing suspicious URLs on their WordPress site. Visitors reported being prompted to perform unusual actions. We…
Read the Post
Search
Sucuri Sidebar Malware Removal to Signup Page
Sucuri Logo

Let’s Connect

Products
Website Firewall Website Security Platform WordPress Security Website Backups Hack Assistance Pricing
Solutions
DDoS Protection Malware Detection Malware Removal Malware Prevention Blacklist Removal SEO Spam Removal
USE CASES
Developers Ecommerce Agency Plans Enterprise Services HTTPS/2 Virtual Patching
Support
Knowledge Base SiteCheck Guides Research Labs Report Abuse Status Report
Company
About Sucuri Contact Blog Referral Partners Testimonials
Terms of Use Privacy Policy Do Not Sell My Personal Information Frequently Asked Questions

© 2025 GoDaddy Mediatemple, Inc., d/b/a Sucuri. All rights reserved.

back to top

'