The Art of Website Malware Removal – The Basics
Joseph Herbrandson When talking about defense against malicious hacks, the attack vector is a common topic for Information Security (InfoSec) professionals. The primary concern is to understand…
Browsing Category
Security Education
681 posts
The Dangers of Hosted Scripts – Hacked jQuery Timers
Denis Sinegubko Google blacklisted a client’s website claiming that malicious content was being displayed from “forogozoropoto(dot)2waky (dot)com”. A scan didn’t reveal anything suspicious. The next step was…
Combat Black Hat SEO Infections with SEO Insights
Alycia Mitchell Black hat SEO spam is the plague of the internet, and the big search engines take it seriously. One of the worst spam tactics on…
Most Common Attacks Affecting Today’s Websites
New web-based attack types and vectors are coming out every day, this is causing businesses, communities and individuals to take security seriously now more than…
Drupal Warns – Every Drupal 7 Website Compromised Unless Patched
Daniel Cid The Drupal team released an update to a critical SQL Injection vulnerability a few weeks ago and urged all their users to update or patch…
The Details Behind the Akeeba Backup Vulnerability
Marc-Alexandre Montpas It’s been a month since our disclosure of a low-severity vulnerability affecting Akeeba Backup version 3.11.4, which allowed an attacker to list and download backups…
Drupal SQL Injection Attempts in the Wild
Update (2014/10/29): The Drupal team just released a Public Service Announcement, confirming what we are seeing (mass compromise of Drupal sites). We’ve released a new…
Highly Critical SQL Injection Vulnerability Patched in Drupal Core
The Drupal team just released a security update for Drupal 7.x to address a highly critical SQL injection vulnerability. This bug can be exploited remotely…
Vulnerability Disclosed in SSL 3.0 – This Poodle Bites
It seems that SSL just cannot stay out of the news. Another vulnerability, this time in SSL 3.0, has been disclosed at the Google Online…
Website Attacks – SQL Injection And The Threat They Present
We are starting a new series of articles where we will talk about different active website attacks we are seeing. The first one we will…
Bash – ShellShocker – Attacks Increase in the Wild – Day 1
The Bash ShellShocker vulnerability was first disclosed to the public yesterday. Just a few hours after the initial release, we started to see a few…