Sucuri Labs

We are often seeing malicious code being used to steal credit card details and sensitive information from compromised Magento sites, but this one caught our…

After a website is compromised, it can be misused in multiple ways. We often see it being used on Spam SEO campaigns or to distribute…

It’s very common to see backdoors such as uploaders among site’s files. However, we have seen more often cases where file uploaders, mainly in Drupal…

While analyzing a compromised Magento site, we found another Credit Card (CC) stealer variation. We posted a few times about this type of malware, but…

We have previously analyzed many Credit Card stealers code, specially targeting the Magento platform: Magento Malware Emails Stolen Credit Card Details to Hackers Magento script…

We recently found a website that was redirecting mobile users to a third-party site called chickenkiller&nbsp.com, after further investigation we found that the malware was…

In black hat SEO schemes, some links don’t have to have descriptive anchor keywords. For example, if their only purpose is help search engine crawlers…

To make malicious injections look less suspicious, hackers like to use domains that look credible. It may be some typo domain like google-analystisc[.]com instead of…

We regularly detect malware that targets payment modules on compromised ecommerce websites, mainly on Magento. Recently we’ve stumbled upon the same threat on osCommerce. The…

Chinese replica spam campaigns aim for large number of doorways per infected site. And quite often their doorways are static, which means hundreds of thousands…

A compromised website is perfect for placing black hat SEO doorways. Usually hackers either create such doorways as static files in deep subdirectories or use…