Website Malware Infections- Website Security News

How to Find & Remove Malware in Favicon (.ico) Files

Rianna MacLeod

Last Updated: March 5, 2024

When a website is hacked symptoms can sometimes include unexpected, unfamiliar and strangely located favicon or .ico files. Other symptoms might include: ”This site may…

Read the Post

404 errors in google search console after a hack and SEO spam

How to Remove 404 Errors in Search Console

Cesar Anjos

August 25, 2022

Hacked websites are known to result in a plethora of headaches for webmasters, including malicious redirects, broken links, and unwanted spam content. But did you…

Read the Post

Examining Less-Common WordPress Credit Card Skimmers

Ben Martin

August 23, 2022

Since 2020 considerable attention has been spent analysing the emergence of MageCart malware within WordPress environments which most commonly affects sites using WooCommerce. As demonstrated…

Read the Post

Fake DDoS Pages on WordPress Sites Lead to Drive-By-Downloads

Fake DDoS Pages On WordPress Sites Lead to Malicious Downloads

Ben Martin

August 18, 2022

It’s not uncommon for users to experience “DDoS Protection” pages when casually browsing the web. These DDoS protection pages are typically associated with browser checks…

Read the Post

SocGholish and NDSW NDSX malware, FakeUpdates, SilverFish (SolarWind) and ransomware

SocGholish Malware: Script Injections, Domain Shadowing, IPs & Obfuscation Techniques

Denis Sinegubko

Last Updated: February 21, 2024

In June 2022, we shared information about the ongoing NDSW/NDSX malware campaign which has been one of the most common website infections detected and cleaned…

Read the Post

DHL Phishing Page Uses Telegram Bot for Exfiltration

Krasimir Konov

July 26, 2022

One of the quickest ways for an attacker to harvest financial data, credentials, and sensitive personal information is through phishing. These social engineering attacks can…

Read the Post

Cryptominers & WebAssembly in Website Malware

Cesar Anjos

July 21, 2022

WebAssembly (also referred to as Wasm) is a binary instruction format that runs in the browser to enable high-performance applications on web pages and can…

Read the Post

X-Cart Skimmer with DOM Based Obfuscation

PrestaShop Skimmer Concealed in One Page Checkout Module

Matt Morrow

July 19, 2022

PrestaShop is a popular freemium open source e-commerce platform used by hundreds of thousands of webmasters to sell products and services to website visitors. While…

Read the Post

Security Lessons Learned from 2021

Victor Santoyo

July 14, 2022

There’s no one specific topic or target or audience when it comes to website security. But when you clean enough hacked websites, you start to…

Read the Post

Malicious C&C Script Used to Manage Botnet

Infected WordPress Site Reveals Malicious C&C Script

Krasimir Konov

July 12, 2022

Bitcoin prices are down 60% year to date, trading far from the all-time highs of $69,000 seen last November. Some altcoins have plummeted even farther…

Read the Post

SiteCheck Malware Trends Report – Q2 2022

Denis Sinegubko

July 7, 2022

For the latest malicious scripts, check out our SiteCheck 2023 Mid-Year Malware Trends report. Conducting an external website scan for indicators of compromise is one…

Read the Post