Website Malware Infections- Website Security News

array_diff_ukey Usage in Malware Obfuscation

Luke Leal
May 14, 2019

We discovered a PHP backdoor on a WordPress installation that contained some interesting obfuscation methods to keep it hidden from prying eyes: $zz1 = chr(95).chr(100).chr(101).chr(115).chr(116).chr(105).chr(110).chr(97).chr(116).chr(105).chr(111).chr(110);…

Read the Post

Images Loading Credit Card Swipers

Denis Sinegubko
May 10, 2019

We’ve come across an interesting approach to injecting credit card swipers into Magento web pages. Instead of injecting a real script, attackers insert a seemingly…

Read the Post

xmlrpc.php Brute Force Tool

Luke Leal
May 9, 2019

We discovered a xmlrpc.php brute-force tool in a malicious PHP script that appears to have been uploaded months ago after a vulnerable GDPR plugin exploit:…

Read the Post

Replica Spam on Poorly Maintained ASP Site

Denis Sinegubko
May 6, 2019

Although the majority of sites we work on are powered by PHP, we still have clients whose sites use other programming languages. The other day…

Read the Post

Cronjob Backdoors

Cesar Anjos
May 3, 2019

Attackers commonly rely on backdoors to easily gain reentry and maintain control over a website. They also use PHP functions to further deepen the level…

Read the Post

How Stolen Ecommerce Data is Sold on the Darknet

Luke Leal
May 1, 2019

We have recently published posts regarding banking malware and some of the ways it uses compromised websites to infect victim’s devices (smartphones, computers, POS terminals).…

Read the Post

Typo 3 Spam Infection

Ben Martin
April 26, 2019

Here at Sucuri most of the malware that we deal with is on CMS platforms like: WordPress, Joomla, Drupal, Magento, and others. But every now…

Read the Post

Fake relatable domain used to distribute ads

Krasimir Konov
April 26, 2019

Malicious users try to hide their malicious scripts in many ways these days, some more clever then others, in this case we look at a…

Read the Post

Free Premium themes? There’s always a catch

Pedro Peixoto
April 25, 2019

OK, so we’ve all been there. We want something Premium, such as a paid version of an app or piece of software, but it would…

Read the Post

WP Plugin Hider

Luke Leal
April 23, 2019

One of our analysts recently found an interesting injection that has been found on WordPress installations. Installed by hacker, it is used to hide a…

Read the Post