Ben Martin

100 posts

Ben Martin is a security analyst and researcher who joined the company in 2013. Ben's main responsibilities include finding new undetected malware, identifying trends in the website security world, and, of course, cleaning websites. His professional experience covers more than a decade of working with infected websites of every variety with a special focus on eCommerce / credit card theft malware. When Ben isn't slaying malware you might find him producing music, gardening, or skateboarding around Victoria.

Sign1 Malware: Analysis, Campaign History & Indicators of Compromise

Ben Martin
March 20, 2024

A new client recently came to us reporting seemingly random pop ups occurring on their website. While it was clear that there was something amiss…

Read the Post

What is .htaccess Malware? (Detection, Symptoms & Prevention)

Ben Martin
March 15, 2024

The .htaccess file is notorious for being targeted by attackers. Whether it’s using the file to hide malware, redirect search engines to other sites with…

Read the Post

New Wave of SocGholish Infections Impersonates WordPress Plugins

Ben Martin
March 1, 2024

SocGholish malware, otherwise known as “fake browser updates”, is one of the most common types of malware infections that we see on hacked websites. This…

Read the Post

Remote Access Trojan (RAT): Types, Mitigation & Removal

Ben Martin
February 16, 2024

Remote Access Trojans (RATs) are a serious threat capable of giving attackers control over infected systems. This malware stealthily enters systems (often disguised as legitimate…

Read the Post

Lateral Movement and Cross-Site Contamination

The Dangers of Lateral Movement & Website Cross Contamination

Ben Martin
January 19, 2024

One of the most frequent problems that we observe in website hosting environments is “cross contamination” — the lateral movement of an attacker between websites.…

Read the Post

MageCart WordPress Plugin Injects Malicious User & Credit Card Skimmer

Ben Martin
December 21, 2023

One of our analysts recently found an interesting malicious plugin injected into a WordPress / WooCommerce ecommerce website which both creates and conceals a bogus…

Read the Post

Credit Card Skimming WooCommerce WebSockets

Skimming Credit Cards with WebSockets

Ben Martin
November 30, 2023

If you were to believe shopping mall merchants, you’d think the holiday season starts immediately after Halloween. Christmas trees and candy canes abound, along with…

Read the Post

FakeUpdateRU Infection Spreads Trojan Malware

FakeUpdateRU Chrome Update Infection Spreads Trojan Malware

Ben Martin
October 25, 2023

Fake Google chrome update malware, often associated with the notorious SocGholish infection, is something that we have been tracking for a number of years. It…

Read the Post

Tampered OpenCart Authentication Aids Credit Card Skimming Attack

Ben Martin
October 19, 2023

Using out of date software is the leading cause of website compromise, so keeping your environment patched and up to date is one of the…

Read the Post

Optimizing WordPress: Security Beyond Default Configurations

Ben Martin
October 3, 2023

Default configurations in software are not always the most secure. For example, you might buy a network-attached home security camera from your friendly neighborhood electronics…

Read the Post

Magecart stealing credit card information with a single white invisible pixel

Decoding Magecart: Credit Card Skimmers Concealed Through Pixels & Images

Ben Martin
September 12, 2023

MageCart infections most often come in the form of complex, obfuscated JavaScript injected into Magento database tables such as core_config_data, or as malicious plugins or…

Read the Post