The Growing DDoS Threat to Website Owners
Tony Perez As website attacks continue to evolve, we see growing levels of sophistication in the way attackers are expanding the economics of their industry. The monetization…
Browsing Category
Security Education
679 posts
Phishers Abuse Hosting Temporary URLs
Denis Sinegubko Recently we told you how hackers use alternative domain names provided by web hosts to make their URLs look less suspicious. This time we’ll show…
PCI for SMB: Requirement 1- Install and Maintain a Firewall
Daniel Cid Update: Read our new PCI Compliance guide. If you have an ecommerce website, allowing you to accept credit cards on your site, PCI compliance should…
Hacked Website Report – 2016/Q1
Our Remediation group is comprised of two distinct teams, the Incident Response Team (IRT) and Malware Research Team (MRT). These teams work closely with our…
Secure Coding: How to Account for Input Sanitization
Rodrigo Escobar On average, a website leverages around 18-20 different plugins in its structure. These plugins enhance the website’s functionality and in some instances extend the applications…
Domain Validation: SSL’s Other Job
Jon Watson SSL certificates are a hot topic today. Website owners are becoming increasingly aware that collecting information on non-HTTPS secured pages is a bad idea and…
Analyzing ImageTragick Exploits in the Wild
Three days ago the ImageMagic (also known as, ImageTragick) vulnerability was released to the world. We’ve been actively monitoring this vulnerability, and have discovered a…
ImageMagick Remote Command Execution Vulnerability
ImageMagick is a popular software used to convert, edit and manipulate images. It has libraries for all common programming languages, including PHP, Python, Ruby and…
How to Find & Fix Mixed Content Issues with SSL / HTTPS
Update: If you need help transitioning your website from HTTP to HTTPS, check out our guide on how to install an SSL certificate. What is Mixed…
SEO Spam Technique Designed to Avoid Detection
Peter Gramantik Ten years ago the internet looked very different than it does now. Today, web designers have more options and standards to make a website stand…
Ask Sucuri: What is an XSS Vulnerability?
Rodolfo Assis Question: What is an XSS vulnerability? Should I be concerned about an XSS vulnerability? XSS (short for Cross-Site Scripting) is a widespread vulnerability that affects…