WordPress Sites Hacked with Superpuperdomain2.com
David Dede A few days ago we posted about a series of attacks that were happening against WordPress sites running the vulnerable timthumb.php script. We detected thousands…
WordPress Sites Hacked with Superpuperdomain dot com (Attacking Timthumb.php)
We are seeing a large number of WordPress sites compromised with a malicious JavaScript loading from superpuperdomain.com/count.php. That JavaScript redirects visitors that were going to…
Attacks against osCommerce sites – Spam / google_analytics_obh
It seems that the attacks against osCommerce are not going to stop any time soon. With so many valuable targets (online stores) that are not…
Mass Compromise of Sites at gogvo.com – SEO Spam
A regular topic of discussion the past few months has been the basicpills link injection (a type of blackhat seo spam) on WordPress sites. If…
Timthumb Security Vulnerability – List of Themes
The Timthumb 0-day security vulnerability is generating a lot of noise and for good reason. If you have a theme that includes TimThumb, your site…
Timthumb.php Security Vulnerability – Just the Tip of the Iceberg
There has been some buzz about a zero day vulnerability found in Timthumb.php that can allow for arbitrary file uploads. Although this is a platform…
Host4africa Mass Compromise
We are seeing a lot of sites hosted at host4africa.com compromised with Blackhat Spam SEO. Most of them are in the .co.za TLD (at 74.53.0.0/16…
The Danger of Remote Widgets – Feedcat.net Sold and Now Distributing Malware
Do you like to add all types of “widgets” and cool badges to your site? Be careful which ones do you choose, or your site…
Top linked sites – What webmasters are linking to
We scan hundreds of thousands of sites daily here at Sucuri and while analyzing some of the data we got interested on what sites are…
Python: No such file or directory – Your site is likely compromised
If you run a WordPress site and you are seeing the following error at the top of your pages: sh: /usr/local/bin/python: No such file or directory…
Google blocks .co.cc, attackers are now using .co.tv
It is being reported that Google took action against the high number of malware sites in the .co.cc domain, removing more than 11 million sites…