Sucuri Labs

Every day we find many Magento credit card stealers injected into different files: modules, core files, themes. Magento database is not an an exception. For…

The most typical reasons for Magento websites to get compromised are to steal credit card information or to find a way to divert payments to…

With the outburst of mobile-only malware, we’re seeing a lot of mobile-devices targeted campaigns in last years. There are lot of ways how to make…

Pop-up ads are annoying. Unfortunately many sites rely on them to pay for their operational expenses and even to make some extra cash. However when…

Recently we wrote about how hackers hijacked payment process on an ecommerce site and redirected customers to a fake checkout page on a third-party site.…

Some people are unfamiliar with the Drupal CMS, it doesn’t enjoy the popularity that some others do like WordPress and Joomla, but it’s a powerful…

In order to avoid detection and maintain access to compromised websites, attackers use different techniques to hide their malicious code. During our cleanup investigation we…

During an incident response process performed in our client’s website, one of our analysts found a very interesting web shell. Our tools detected a suspicious…

We wrote multiple times about various attacks on e-commerce sites that try to steal credit card details of their customers. In most cases, all such…

Recently we cleaned a site that had a malicious wp-page.php file at the root of the WordPress site. It was responsible for pharma spam doorways…

Sharing spam content and getting blacklisted is not a matter of choice when a website is hacked, these are just some of the consequences when…