SQLi Vulnerability in YITH WooCommerce Wishlist
John Castro As part of our regular research audits for our Sucuri Firewall, we discovered an SQL Injection vulnerability affecting the YITH WooCommerce Wishlist plugin for WordPress.…
SQL Injection Vulnerability in WP Statistics
Update 11/3/2017: We are always looking for the latest to be shared with you and now we have released our WordPress Security Guide, were you…
.user.ini SPAM SEO Redirect
Since PHP 5.3.0, PHP includes support for configuration INI files on a per-directory basis that has the same effect (depending on the case) that the…
Backdooring sites using exotic php functions
Throughout the last few months, we published multiple articles about simple but powerful backdoors and how attackers get creative. Virtually in all cases, the code…
Fake Google Analytics tracking code leading to Adware
Our Incident Response process makes sure we remove all malicious files and other small pieces of code inserted in good files that could be used…
Hooking WordPress Class to Hide Malicious Users
When a website is compromised, attackers perform post-exploitation tasks to maintain access to the site for as long as possible. One of these actions is…
Another sample of a Magento compromise for profit
We are often seeing malicious code being used to steal credit card details and sensitive information from compromised Magento sites, but this one caught our…
Magento Credit Card Stealer for Braintree Extension
We regularly find and write about malware that steals credit card details from Magento sites because attackers discover new techniques to obtain sensitive data daily.…