• Skip to primary navigation
  • Skip to content
  • Skip to primary sidebar
  • Skip to footer

Sucuri Blog

Website Security News

  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Enterprise Website Security
    • Multisite Solutions
  • Features
    • Detection
    • Protection
    • Performance
    • Response
    • Backups
  • Partners
    • Agency Solutions
    • Partners
    • Referral Program
    • Ecommerce
  • Resources
    • Guides
    • Webinars
    • Infographics
    • SiteCheck
    • Reports
    • Email Courses
  • Immediate Help
  • Login

Ben Martin

About Ben Martin

Ben Martin is a security analyst and researcher who joined the company in 2013. Ben's main responsibilities include finding new undetected malware, identifying trends in the website security world, and, of course, cleaning websites. His professional experience covers more than eight years of working with infected websites, writing blog posts, and taking escalated tickets. When Ben isn't slaying malware, you might find him editing audio, producing music, playing video games, or cuddling with his cat. Connect with him on Twitter

Elementor Pro WordPress Plugin Vulnerability

March 31, 2023Ben Martin

High Severity Vulnerability in WordPress Elementor Pro Patched

On March 22nd, 2023 a security patch was issued for the popular website builder plugin Elementor Pro. Website administrators using this plugin should immediately patch to at least version 3.11.7 to avoid a potential website compromise. The security issue is reported to affect only the…

Read More about High Severity Vulnerability in WordPress Elementor Pro Patched

WordPress Vulnerability

March 23, 2023Ben Martin

Critical Vulnerability Discovered in WooCommerce Payments

On March 22nd, 2023 a critical vulnerability was discovered within the WooCommerce Payments plugin – an extremely popular eCommerce payment plugin for WordPress with over half a million active installations….

Read More about Critical Vulnerability Discovered in WooCommerce Payments

March 21, 2023Ben Martin

WooCommerce Credit Card Skimmer Reveals Tampered Plugin

Disclaimer: The malware infection described in this article does not affect the software plugin as a whole and does not indicate any vulnerabilities or security flaws within WooCommerce or any…

Read More about WooCommerce Credit Card Skimmer Reveals Tampered Plugin

Magbo spam injection encoded with hex2bin

March 3, 2023Ben Martin

Magbo Spam Injection Encoded with hex2bin

We recently had a new client come to us with a rather peculiar issue on their WordPress website: They were receiving unwanted popup advertisements but only when the website was…

Read More about Magbo Spam Injection Encoded with hex2bin

Attackers Abuse Cron Jobs to Reinfect Websites

February 21, 2023Ben Martin

Attackers Abuse Cron Jobs to Reinfect Websites

Malicious cron jobs are nothing new; we’ve seen attackers use them quite frequently to reinfect websites. However, in recent months we’ve noticed a distinctive new wave of these infections that…

Read More about Attackers Abuse Cron Jobs to Reinfect Websites

Bogus Short URLs Redirect Thousands of Hacked Sites in AdSense Fraud Campaign

February 9, 2023Ben Martin

Bogus URL Shorteners Redirect Thousands of Hacked Sites in AdSense Fraud Campaign

Late last year we reported on a malware campaign targeting thousands of WordPress websites to redirect visitors to bogus Q&A websites. The sites themselves contained very little useful information to…

Read More about Bogus URL Shorteners Redirect Thousands of Hacked Sites in AdSense Fraud Campaign

Konami Code Backdoor Concealed in front.jpeg Image

February 2, 2023Ben Martin

Konami Code Backdoor Concealed in Image

Attackers are always looking for new ways to conceal their malware and evade detection, whether it’s through new forms of obfuscation, concatenation, or — in this case — unorthodox use…

Read More about Konami Code Backdoor Concealed in Image

New SocGholish Malware Variant Uses Zip Compression & Evasive Techniques

November 15, 2022Ben Martin

New SocGholish Malware Variant Uses Zip Compression & Evasive Techniques

Readers of this blog should already be familiar with SocGholish: a widespread, years-long malware campaign aimed at pushing fake browser updates to unsuspecting web users. Once installed, fake browser updates…

Read More about New SocGholish Malware Variant Uses Zip Compression & Evasive Techniques

Massive ois[.]is Black Hat Redirect Malware Campaign Targets WordPress Sites

November 8, 2022Ben Martin

Massive ois[.]is Black Hat Redirect Malware Campaign

Since September 2022, our research team has tracked a surge in WordPress malware redirecting website visitors to fake Q&A sites via ois[.]is. These malicious redirects appear to be designed to…

Read More about Massive ois[.]is Black Hat Redirect Malware Campaign

Wordfence Evasion Malware Conceals Backdoors

October 20, 2022Ben Martin

Wordfence Evasion Malware Conceals Backdoors

Malware authors, with some notable exceptions, tend to design their malicious code to hide from sight. The techniques they use help their malware stay on the victim’s website for as…

Read More about Wordfence Evasion Malware Conceals Backdoors

New Malware Variants Serve Bogus CloudFlare DDoS Captcha

September 27, 2022Ben Martin

New Malware Variants Serve Bogus CloudFlare DDoS Captcha

When attackers shift up their campaigns, change their payload or exfiltration domains, and put some extra effort into hiding their malware it’s usually a telltale sign that they are making…

Read More about New Malware Variants Serve Bogus CloudFlare DDoS Captcha

Primary Sidebar

Socialize With Sucuri

We're actively engaged across multiple platforms. Follow us and let's connect!

  • Facebook
  • Twitter
  • LinkedIn
  • YouTube
  • Instagram
  • RSS Feed

Join Over 20,000 Subscribers!

Sucuri Sidebar Malware Removal to Signup Page

Footer

Products

  • Website Firewall
  • Website AntiVirus
  • Website Backups
  • WordPress Security
  • Enterprise Services

Solutions

  • DDos Protection
  • Malware Detection
  • Malware Removal
  • Malware Prevention
  • Blacklist Removal

Support

  • Blog
  • Knowledge Base
  • SiteCheck
  • Research Labs
  • FAQ

Company

  • About
  • Media
  • Events
  • Employment
  • Contact
  • Testimonials
  • Facebook
  • Twitter
  • LinkedIn
  • Instagram

Customer Login

Sucuri Home

  • Terms of Use
  • Privacy Policy
  • Frequently Asked Questions

© 2023 Sucuri Inc. All rights reserved

Sucuri Cookie Policy
See our policy>>

Our website uses cookies, which help us to improve our site and enables us to deliver the best possible service and customer experience.