WordPress SPAM Causing Headaches
Tony Perez Newly Released: On 11/3/2017 we published our guide on how to secure your WordPress site and it also talks about vulnerabilities and best practices. It…
Browsing Category
Security Education
681 posts
Ruby on Rails Vulnerability Leads to Remote Command Execution on Servers
As always, the year is kicking off with a bang. This is a public service announcement to get the word out on a very serious…
Website Malware – Drupal Injections Targeting Cookies
Many folks are unfamiliar with the Drupal CMS, it doesn’t enjoy the popularity that some others do like WordPress and Joomla, but its a powerful…
Website Malware – Sharp Increase in SPAM Attacks – WordPress & Joomla
This past week we have seen a sharp increase in the use of old tactics designed to poison your search engine results – also known…
Website Malware – Reality of Cross-Site Contaminations
Sometimes you can’t help but put yourself in the shoes of your clients and skeptics and wonder how many times they roll their eyes at…
Sucuri Launches Rapid+ Monitoring
Daniel Cid A common feature our clients have been asking us for a long time is the ability to monitor their sites more frequently. For some high…
PSA: December Zero Day’s Announced – MySQL, FreeSSH, Free FTPD
So it looks like we’re closing out the year in style in 2012. This weekend a number of new, very serious, zero-day vulnerabilities were released…
Website Malware – Joomla SEP Attack – Pharma Injection
This was a fun, yet painful case. In the past we have written a few different posts targeting search engine poisoning attacks (SEP) that like…
Website Malware Removal – FTP Tips & Tricks
Update 9/9/16: We released a new guide that provides better instructions on how to clean a hacked WordPress site using the Free WordPress security plugin.…
SFTP/FTP Password Exposure via sftp-config.json
Have you heard of the file sftp-config.json? You haven’t? Neither did we until a few weeks ago. It is used by some SFTP/FTP clients (Sublime…
Website Malware – SEP Attack – SPAM Link Farm
How appropriate that less than a few hours from my last post talking about Search Engine Poisoning (SEP) attacks I come across a case that…