X

Javascript Injection Creates Rogue WordPress Admin User

Earlier this year, we faced a growing volume of infections related to a vulnerability in…

Douglas Santos

Malicious Cryptominers from GitHub

Recently, a webmaster contacted us when his AVG antivirus reported that the JS:Miner-C [Trj] infection…

Denis Sinegubko

Cloudflare[.]Solutions Keylogger on Thousands of Infected WordPress Sites

Update Dec. 8 2017: The cloudflare[.]solutions domain has now been taken down. A few weeks…

Denis Sinegubko

Formidable Forms / Shortcodes Ultimate Exploits In The Wild

On Monday, November 20th, we were notified about a vulnerability that poses a serious security…

Marc-Alexandre Montpas

Risks For E-commerce Site Owners Through the Holidays

Shopping season is here, and with that, so is the opportunity for ecommerce site owners…

Pilar Garcia

How to Avoid Malicious Cyber Monday Campaigns

As consumers prepare to take advantage of the discounts and promotions for the Black Friday…

Ahmad Azizan Idris

SQL Injection in bbPress

During regular audits of our Sucuri Firewall (WAF), one of our researchers at the time,…

Marc-Alexandre Montpas

Why Attackers Hack Small Sites

You would never leave the front door to your house wide open when you’re not…

Pilar Garcia

New WordPress Security Guide

WordPress has become the most popular CMS and now powers over 28% of the web.…

Rianna MacLeod

Cryptominers on Hacked Sites – Part 2

Last month we wrote about how the emergence of website cryptocurrency miners resulted in hackers…

Denis Sinegubko

Malware Serving SEO Spam from External Sites

We handle an enormous number of SEO spam infections here at Sucuri. In Q3 of…

Krasimir Konov