Luke Leal

121 posts

Luke Leal is a member of the Malware Research team and joined the company in 2015. Luke's main responsibilities include threat research and malware analysis, which is used to improve our tools. His professional experience covers over eight years of deobfuscating malware code and using unique data from it to help in correlating patterns. When he’s not researching infosec issues or working on websites, you might find Luke traveling and learning about new things. Connect with him on Twitter.

PHP Backdoor Obfuscated One Liner

Luke Leal
August 5, 2020

In the past, I have explained how small one line PHP backdoors use obfuscation and strings of code in HTTP requests to pass attacker’s commands…

Read the Post

SEO Hacktool: Sitemap Generator

Luke Leal
July 30, 2020

An XML sitemap is an important part of a website’s SEO and exists to help search engine crawlers index new URLs on your website. For…

Read the Post

Spox Phishing Kit Harvests Chase Bank Credentials

Luke Leal
July 13, 2020

Phishing kits are the back end components to a phishing attack and are often designed to make it easier to deploy a phishing page. These…

Read the Post

Pirated WordPress Plugins Bundled with Backdoors

Luke Leal
July 8, 2020

One widespread belief among webmasters is that attackers typically only compromise websites in a couple of ways: by exploiting vulnerabilities or stealing login credentials. Although…

Read the Post

Steam Phishing Campaign Uses CS:GO Skin Gambling Lure

Luke Leal
May 20, 2020

Attackers regularly target online gaming accounts as they can quickly sell any transferable items along with account logins to a third party. This scenario has…

Read the Post

PinnacleCart Server-Side Skimmer & Backdoor

WordPress Malware Collects Sensitive WooCommerce Data

Luke Leal
May 15, 2020

During a recent investigation, our team found malicious code that reveals how attackers are performing reconnaissance to identify if sites are actively using WooCommerce in…

Read the Post

B374k Web Shell Packer

Luke Leal
May 13, 2020

PHP web shells are a type of backdoor which, when left on compromised websites, allow attackers to maintain unauthorized access after initial compromise. To further…

Read the Post

YouTube Account Recovery Phishing

Luke Leal
May 12, 2020

Phishing attacks against targeted channels have been successful in the past, as explained last year on ZDNet. Recently, our Remediation team found an interesting phishing…

Read the Post

Phishing Campaign Targets Poste Italiane & SMS OTP Verification

Luke Leal
April 29, 2020

When creating phishing lures, attackers may cite recent major regulatory changes within the context of their social engineering scheme to confuse or further entice victims…

Read the Post

WordPress Redirect Hack via Test0.com/Default7.com

Obfuscated WordPress Malware Dropper

Luke Leal
April 21, 2020

It goes without saying that evasive maneuvering is at the top of a hacker’s priority list. Most often, they try to evade detection by obfuscating…

Read the Post

Magento JavaScript Skimmer Targets Tarjetas de Crédito

Luke Leal
April 17, 2020

A website owner recently contacted us regarding a payment problem on their Magento website. A suspicious payment card form was loading for customers who were…

Read the Post