New wave of wp-vcd Malware
Krasimir Konov Recently we saw a new wave of a known malware that injects malicious WordPress admin users to vulnerable or compromised sites.The malware, well analysed by…
Browsing Category
Website Malware Infections
858 posts
Cryptominers on Hacked Sites – Part 2
Denis Sinegubko Last month we wrote about how the emergence of website cryptocurrency miners resulted in hackers abusing the technology by injecting the CoinHive miners into compromised…
Attackers leveraging WP Maintenance plugin to deface websites
Bruno Zanelato Recently, during a website investigation, we detected that attackers have been modifying the database structure of WP Maintenance plugin (which is a very popular wordpress…
Malware Serving SEO Spam from External Sites
We handle an enormous number of SEO spam infections here at Sucuri. In Q3 of 2016, approximately 37% of all website infection cases were related…
Books SEO Spam
Fernando Barbosa We already discussed in our blog some cases where the attacker uploaded a full ready-to-use website in order to promote their products and services. This…
Mayhem Malware Server Botnet Continues to Evolve
Jose Martinez Three years ago, researchers at Yandex discovered a complex server infection, dubbed Mayhem, that embeds itself deep within a system by compiling a shared object…
Simple self updating hacktool
Pedro Peixoto While working on a compromised website, it’s very common to encounter hacktools. Those are like the attackers’ swiss knife, allowing them to perform several tasks…
Soccer spam. Really?
In the last few months, we’ve covered several cases of SEO Spam in our labs and blog that were promoting products and services ranging from…
Mayhem malware still on the wild
Years ago, colleagues from Yandex introduced the concept of Mayhem infections. In that post, they provided very detailed information about the malware, its functionalities and…
SEO spam loading from external site
Many websites get compromised and used for SEO in order to drive traffic to other websites that would usually be ranked very low or completely…
Evil Self-Regenerating WordPress Administrator User
Andrey Kucherov Attackers often aim to conceal their presence using different methods, such as injecting redirect scripts, creating spam pages, or hiding a mailer in checkout pages…