Analyzing a WooCommerce Credit Card Skimmer
Liam Smith The number of credit card skimmers targeting WooCommerce websites has skyrocketed over the past year, and threat actors have become increasingly creative in the different…
Browsing Category
Website Malware Infections
837 posts
X-Cart Skimmer with DOM-based Obfuscation
Denis Sinegubko Our lead security analyst Liam Smith recently worked on an infected X-Cart website and found two interesting credit card stealers there — one skimmer located…
Massive WordPress JavaScript Injection Campaign Redirects to Ads
Krasimir Konov Our remediation and research teams regularly find malicious redirects on client sites. These infections automatically redirect site visitors to third-party websites with malicious resources, scam…
Examining Emerging Malware: Website Backdoors
Ben Martin Next up in our “This didn’t quite make it into the 2021 Threat Report, but is still really cool” series: New and emerging backdoor variants…
Manually Identifying an X-Cart Credit Card Skimmer
During a recent investigation, a new client came to us reporting that their antivirus had detected a suspicious domain loading on their website’s checkout page.…
WooCommerce Credit Card Skimmers Concealed In Fake Images
Matt Morrow Our research and remediation teams have noticed an increase in WooCommerce credit card skimmers on client sites over the past few years, as detailed in…
WordPress Overtakes Magento in Credit Card Skimmers
One of the most important monitoring tools in our security platform is our Sucuri SiteCheck scanner. It’s a free tool to scan your website for…
WordPress Popunder Malware Redirects to Scam Sites
Over the last year we’ve seen an ongoing malware infection which redirects website visitors to scam sites. So far this year our monitoring has detected…
New Wave of AnonymousFox Cron Jobs
Recently our Remediation and Research teams have noticed a new wave of malicious cron jobs associated with the notorious AnonymousFox malware. The cron jobs are…
The Mystery Admin User
One of our clients recently submitted a malware removal request with a curious problem: A mystery admin user kept getting re-created on their website. Try…
Attackers Abuse Poorly Regulated Top-Level Domains in Ongoing Redirect Campaign
One of the more common infections that we see are site-wide redirects to spam and scam sites, achieved by attackers exploiting newly found vulnerabilities in…