Website Malware: Unwanted Exit to YourBrexit
Denis Sinegubko Some website hacks aim to make some political statements. Defacements are well known for this. Some infections redirect visitors to scam sites that push (usually…
Browsing Category
Website Malware Infections
858 posts
Titles, Imprints and Marks Left by Attackers
Jose Martinez Some attackers seem to like signing their scripts. This fact is especially true for defacements and backdoors, where attackers show their pride stating that they…
Malicious Image Defacement Hidden from Search Engines
Yuliyan Tsvetkov After carefully designing a theme and images that represent your brand, nothing is worse than seeing a malicious image suddenly associated with your business or…
WordPress Security – Unwanted Redirects via Infected JavaScript Files
We’ve been watching a specific WordPress infection for several months and would like to share details about it. The attacks inject malicious JavaScript code into…
WebSockets, Viagra and Fake CloudFlare CDN
Fernando Barbosa Recently we’ve seen some WordPress websites displaying unwanted banners at the bottom of the page which appear 15 seconds after browsing the website. Those banners…
Spotting a Hidden SEO Hack: “Play One”
SEO hacks continue to plague websites as attackers abuse SERP rankings for their own gain. The time and effort spent by the website owner creating…
Attackers Silently add new user with Administrator role to WordPress sites
Attackers tend to get smarter in order to avoid detection, as well as gain access to your WordPress site. They use legit functions of the…
SEO Spam Campaign Exploiting WordPress REST API Vulnerability
Just over a week ago, WordPress released version 4.7.3 to patch multiple security issues. Despite the automatic update feature provided by many hosting companies, there…
doc.google.com.TROJAN
During an incident response process, we identified some files located at a website’s root folder. Although they had different filenames (post.php, news.php, home.php, etc), they…
Set your Cookie, Execute a Command
Backdoors evolve. They tend to get more complex, harder to understand and harder to decode, but this is not always the case. Most of the…
One, two, three… CC stolen!
Attackers work hard to make their code very well hidden from the victim and antivirus products, however they might leave some fingerprints (usually not on…