Ben Martin

97 posts

Ben Martin is a security analyst and researcher who joined the company in 2013. Ben's main responsibilities include finding new undetected malware, identifying trends in the website security world, and, of course, cleaning websites. His professional experience covers more than a decade of working with infected websites of every variety with a special focus on eCommerce / credit card theft malware. When Ben isn't slaying malware you might find him producing music, gardening, or skateboarding around Victoria.

2024 Credit Card Theft Season Arrives

Ben Martin
November 7, 2024

The holiday shopping season is just around the corner, and it’s the time of year the eCommerce website owners need to be most on their…

Read the Post

Woo Skimmer Uses Style Tags and Image Extension to Steal Card Details

Ben Martin
September 12, 2024

This post starts the same way many others do on this blog, and it will be familiar to those who keep up with website security:…

Read the Post

WordPress Websites Used to Distribute ClearFake Trojan Malware

Ben Martin
August 22, 2024

Unfortunately, scams are all over the place, and anybody who has surfed the web should know this. We’ve all gotten phishing emails, or redirected to…

Read the Post

PrestaShop GTAG Websocket Skimmer

Ben Martin
August 14, 2024

During a recent investigation we uncovered another credit card skimmer leveraging a web socket connection to steal credit card details from an infected PrestaShop website.…

Read the Post

Wordfence Evasion Malware Conceals Backdoors

New Variation of WordFence Evasion Malware

Ben Martin
July 5, 2024

We recently came across an infected WordPress environment which contained a new variation of WordFence evasion malware using some sneaky tactics to conceal itself from…

Read the Post

Decoding the Caesar Cipher Skimmer

Ben Martin
June 20, 2024

Over the last several weeks we’ve observed an interesting new variation of “gtag” credit card skimming attack with a surprisingly high number of detections so…

Read the Post

Server Side CC Skimmer Lodged in Obscure Plugin

Server Side Credit Card Skimmer Lodged in Obscure Plugin

Ben Martin
May 22, 2024

Attackers are always finding new ways to inject malware into websites and new ways to obscure it to avoid detection, but they’re always up to…

Read the Post

Mal.Metrica Redirects Users to Scam Sites

Ben Martin
May 2, 2024

One of our analysts recently identified a new Mal.Metrica redirect scam on compromised websites, but one that requires a little bit of effort on the…

Read the Post

Sign1 Malware: Analysis, Campaign History & Indicators of Compromise

Ben Martin
March 20, 2024

A new client recently came to us reporting seemingly random pop ups occurring on their website. While it was clear that there was something amiss…

Read the Post

What is .htaccess Malware? (Detection, Symptoms & Prevention)

Ben Martin
March 15, 2024

The .htaccess file is notorious for being targeted by attackers. Whether it’s using the file to hide malware, redirect search engines to other sites with…

Read the Post

New Wave of SocGholish Infections Impersonates WordPress Plugins

Ben Martin
March 1, 2024

SocGholish malware, otherwise known as “fake browser updates”, is one of the most common types of malware infections that we see on hacked websites. This…

Read the Post