Joomla SEO Spam Injector: Obfuscated PHP Backdoor Hijacking Site Visitors
Puja Srivastava Overview During a recent malware cleanup investigation, we encountered a compromised Joomla website where the site owner reported a strange issue. Their website displayed a…
Browsing Tag
Hacked Websites
699 posts
How to Know if Your Website Is Hacked
Kyle Knight Whether you manage a gaming blog, an e-commerce platform, or an enterprise-level website you probably want to be able to detect infections when they occur.…
Woo Skimmer Uses Style Tags and Image Extension to Steal Card Details
Ben Martin This post starts the same way many others do on this blog, and it will be familiar to those who keep up with website security:…
SiteCheck Remote Website Scanner — Mid-Year 2024 Report
Conducting an external website scan for indicators of compromise is one of the easiest ways to identify security issues. While remote website scanners may not…
PrestaShop GTAG Websocket Skimmer
During a recent investigation we uncovered another credit card skimmer leveraging a web socket connection to steal credit card details from an infected PrestaShop website.…
Attackers Abuse Swap File to Steal Credit Cards
Matt Morrow When it comes to website security, sometimes the most innocuous features can become powerful tools in the hands of attackers. Such was the case in…
New Variation of WordFence Evasion Malware
We recently came across an infected WordPress environment which contained a new variation of WordFence evasion malware using some sneaky tactics to conceal itself from…
Decoding the Caesar Cipher Skimmer
Over the last several weeks we’ve observed an interesting new variation of “gtag” credit card skimming attack with a surprisingly high number of detections so…
2023 Hacked Website & Malware Threat Report
Rianna MacLeod Education is essential for defending your website against emerging threats. That’s why we are thrilled to share our 2023 Hacked Website & Malware Threat Report.…
Hundreds of Websites Targeted by Fake Google Chrome Update Pop-Ups
Fake Browser Update campaigns are known for their deceptive tactics used by hackers to trick users into downloading malicious software. These campaigns typically involve injecting…
From Privacy to Exfiltration: Telegram’s Role in Website Malware
Krasimir Konov Telegram, a name synonymous with secure messaging, has paradoxically become a tool for cybercriminals who abuse the strengths of the platform to target unsuspecting websites.…