Evasive Maneuvers in Data Stealing Gateways
Cesar Anjos We have already shared examples of many kinds of malware that rely on an external gateway to receive or return data, such as different malware…
Analyzing & Decrypting L4NC34’s Simple Ransomware
We’re constantly seeing news about computers being infected by ransomware, but very little do we hear about it affecting websites. That being said, the impact…
Innocent Defacement
When we talk about defacements, we’re usually referring to attacks leading to a visual takeover of a website’s page ― consider it a form of…
Password Attacks 101
One of the most common attacks carried out nowadays is related to cracking passwords, but most people probably just know about brute-forcing. There are, in…
Down the Malware Rabbit Hole: Part II
In our last post in this series, we took a look at a code snippet that had been encoded in a very specific way —…
Down the Malware Rabbit Hole – Part 1
It’s common for malware to be encoded to hide itself—or its true intentions—but have you ever given thought to what lengths attackers will go to…
User adder backdoor
As we’ve seen many times before, there are a variety of backdoors that can be planted on a website. Post-compromise, it’s almost mandatory to review…
Lightbox Adware – From Innocent Scripts to Malicious Redirects
It’s no news that webmasters commonly make use of external scripts to add more features to their site, but things can turn out for the…
Hosting page templates causing your website ad campaign to be blocked
It’s quite common that hosting providers have templates set for pages like 40x and 50x error pages but it’s uncommon for those templates to have…
Cronjob Backdoors
Attackers commonly rely on backdoors to easily gain reentry and maintain control over a website. They also use PHP functions to further deepen the level…
Using Innocent Roles to Hide Admin Users
All across the internet, we find guides and tutorials on how to keep your WordPress site secure. Most of them approach the concept of user…