Indonesian Gambling Redirect Hiding in Plain Sight
Kayleigh Martin Many pieces of malware found over the years have been complex and difficult to find. Attackers often obfuscate their code to make it harder to…
Browsing Category
Website Malware Infections
854 posts
Fake “Fix It” Pop-Ups Target WordPress Sites via Malicious Plugin to Download Trojan
Puja Srivastava In our recent investigation, we discovered a new malware campaign targeting WordPress sites through a fake plugin, universal-popup-plugin-v133, which delivers deceptive browser fix pop-ups. This…
7 Steps to Remove Malware from WordPress
Kyle Knight If you’ve ever had your website compromised by malware, you know the sheer panic it can cause. But don’t worry, you’re not alone. More importantly…
Woo Skimmer Uses Style Tags and Image Extension to Steal Card Details
Ben Martin This post starts the same way many others do on this blog, and it will be familiar to those who keep up with website security:…
SiteCheck Remote Website Scanner — Mid-Year 2024 Report
Conducting an external website scan for indicators of compromise is one of the easiest ways to identify security issues. While remote website scanners may not…
WordPress Websites Used to Distribute ClearFake Trojan Malware
Unfortunately, scams are all over the place, and anybody who has surfed the web should know this. We’ve all gotten phishing emails, or redirected to…
The Security Risks of Using Nulled WordPress Plugins
The prospect of obtaining premium features without spending a dime is tempting. Nulled WordPress plugins and themes, often being advertised as the no cost versions…
PrestaShop GTAG Websocket Skimmer
During a recent investigation we uncovered another credit card skimmer leveraging a web socket connection to steal credit card details from an infected PrestaShop website.…
Attackers Abuse Swap File to Steal Credit Cards
Matt Morrow When it comes to website security, sometimes the most innocuous features can become powerful tools in the hands of attackers. Such was the case in…
New Variation of WordFence Evasion Malware
We recently came across an infected WordPress environment which contained a new variation of WordFence evasion malware using some sneaky tactics to conceal itself from…
Decoding the Caesar Cipher Skimmer
Over the last several weeks we’ve observed an interesting new variation of “gtag” credit card skimming attack with a surprisingly high number of detections so…