Reset Email Account Passwords after Website Infection: Follow Up
Luke Leal In a previous analysis of a malicious file, we demonstrated why you should always update your email account passwords after a security compromise. The information…
Browsing Category
Website Malware Infections
864 posts
The Strange Case of the Malicious Favicon
Néstor Angulo During the past year, our Remediation department has seen a large increase in the number of fully spammed sites. The common factors are strangely named…
WPTF Hybrid Composer – Unauthenticated Arbitrary Options Update
John Castro With almost 300 installs, WPTF – Hybrid Composer is a framework that helps users easily create custom themes for WordPress. We recently noticed an increase…
Spam That Fits Your Website
Gabriel Barbosa Most of the time when we talk about spam, we think about mindless machines that create posts or comments to advertise a business related to…
WordPress Plugin WP Statistics: Unauthenticated Stored XSS Under Certain Configurations
Antony Garand The WordPress plugin WP Statistics, which has an active installation base of 500k users, has an unauthenticated stored XSS vulnerability on versions prior to 12.6.7.…
Plugins Under Attack: June 2019
A long-lasting malware campaign (1,2) targeting deprecated, vulnerable versions of plugins continues to be leveraged by attackers to inject malicious scripts into affected websites. As…
web.config Redirect Malware
Krasimir Konov We recently found this malware on a windows hosting server where the web.config file was modified with the following code. The code redirects multiple user…
Why is Your Website a Target? The SEO Value of a Website
Douglas Santos Website security is what we eat, sleep, and breathe. It’s what we do best because we deal with hacked websites every single day, thousands of…
Spam Injector Masquerading as Google Analytics
Keith Petkus The domain en-google-analytic[.]com, currently sinkholed by a security intelligence company, has been observed by our team to be part of a mass spam injection campaign.…
CC Stealing Code Pretending to be Bing Ads
During a recent investigation we found this suspicious code pretending to be associated with Bing ads.After further review, we see that the code is actually…
Leveraging Stored Procedures for Nefarious Purposes
Bruno Zanelato Here at Sucuri, we clean thousands of websites on a daily basis, and while some of them are easy to solve, others may require more…