Spotting a Hidden SEO Hack: “Play One”
Denis Sinegubko SEO hacks continue to plague websites as attackers abuse SERP rankings for their own gain. The time and effort spent by the website owner creating…
Browsing Category
Website Malware Infections
864 posts
Attackers Silently add new user with Administrator role to WordPress sites
Yuliyan Tsvetkov Attackers tend to get smarter in order to avoid detection, as well as gain access to your WordPress site. They use legit functions of the…
SEO Spam Campaign Exploiting WordPress REST API Vulnerability
Just over a week ago, WordPress released version 4.7.3 to patch multiple security issues. Despite the automatic update feature provided by many hosting companies, there…
doc.google.com.TROJAN
Fernando Barbosa During an incident response process, we identified some files located at a website’s root folder. Although they had different filenames (post.php, news.php, home.php, etc), they…
Set your Cookie, Execute a Command
Backdoors evolve. They tend to get more complex, harder to understand and harder to decode, but this is not always the case. Most of the…
One, two, three… CC stolen!
Attackers work hard to make their code very well hidden from the victim and antivirus products, however they might leave some fingerprints (usually not on…
vBulletin Used to Show Malicious Advertisements
Cesar Anjos In the past, we have seen a massive amount of vBulletin websites compromised through the VBSeo Vulnerability. Attackers have been infecting vBulletin websites since 2012…
Monetized JavaScript Redirect to Free Porn Webcams for Mobile Devices
Attackers will do desperate and obvious things to boost the views of their ‘customers’. On a daily basis we find different malicious redirects (some are…
Ghost from the Past
Some sites may stay infected or not properly cleaned for years. Eventually, they come to us and we clean them. It doesn’t matter whether the…
When malware injection goes wrong
Ben Martin Today while scanning a client’s website, I found a failed attempt by attackers to hide the location of a backdoor. It is very common for…
Spam content injection
Samuel Odendaal During a recent incident response investigation, we detected an infected website loading spam content from another location. The malware was responsible for fetching the spam…