The Hacker Returns: A Backdoor Edition
Moe O Once an attacker manages to hack and gain access to a target site or system, they typically work hard to maintain their access—as long as…
Conditional redirection to an online pharmacy store
During an investigation, a client reported some weird behavior from all incoming visits during their Google search engine result clicks are instantly redirected to an…
Spam Injector Disguised as License Key in WordPress Website
Here at Sucuri, we clean WordPress websites every day. There are various types of common malware, but when we stumble upon a different scenario, our…
Spam Injector Disguised as a License Key
A client reported some weird spam URLs injected on their WordPress website and after an investigation, it turned out that the hacker was hiding the…
Fake Font Dropper
Every day we see different website infections. When we receive unusual or interesting cases, our researcher instincts are triggered to investigate the unusual website behavior…
Fake Font Dropper
A website owner reached out to us to investigate a weird behavior on their site. It was randomly showing a popup window for a missing…
Mobile Malware Targets eCommerce Websites & Users
A mobile malware is a malicious software that targets mobile/smartphones, tablets and similar devices. The attacks may vary from fatal damage to the OS (bricking)…
PrestaShop Attack Steals Login Credentials
Attackers compromise sites with a number of goals in mind – also referred to as actions on objective. In some instances they aim to abuse…
PrestaShop Login Stealer
Lately, we’ve noticed an increase of login credentials stealing attempts and techniques targeting e-commerce based websites. These websites usually have sensitive information (credit card &…
Magento Login credentials stealer
While investigating a compromised Magento-based ecommerce website, we found a malicious code that’s being used to steal and maintain unauthorized access to user accounts. This…