New Malware Variants Serve Bogus CloudFlare DDoS Captcha
Ben Martin When attackers shift up their campaigns, change their payload or exfiltration domains, and put some extra effort into hiding their malware it’s usually a telltale…
Browsing Category
Website Security
1019 posts
What is Virtual Patching: A Guide to Preventing Vulnerabilities
John Booker All software has bugs — but some bugs can lead to serious security vulnerabilities that can impact your website and traffic. Zero-day vulnerabilities can be…
Magento Supply Chain Attack Targets Extension Developer FishPig
Magento store owners using the popular FishPig extensions should be wary of a recent supply chain attack which compromised their software repository. FishPig released a…
Gambling Spam in Visual Composer Raw HTML Element: [vc_raw_html]
Denis Sinegubko Bad actors often look for clever ways to boost the rankings and visibility of their spam pages in search. One of the many black hat…
What Is Clickjacking & How Do I Prevent It?
Antony Garand There are a plethora of techniques that attackers use to redirect site visitors and harvest sensitive information on compromised websites. But when most webmasters think…
How to Find & Remove Malware in Favicon (.ico) Files
Rianna MacLeod When a website is hacked symptoms can sometimes include unexpected, unfamiliar and strangely located favicon or .ico files. Other symptoms might include: ”This site may…
WordPress Vulnerabilities & Patch Roundup — August 2022
Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…
How to Remove 404 Errors in Search Console
Cesar Anjos Hacked websites are known to result in a plethora of headaches for webmasters, including malicious redirects, broken links, and unwanted spam content. But did you…
Fake DDoS Pages On WordPress Sites Lead to Malicious Downloads
It’s not uncommon for users to experience “DDoS Protection” pages when casually browsing the web. These DDoS protection pages are typically associated with browser checks…
SocGholish Malware: Script Injections, Domain Shadowing, IPs & Obfuscation Techniques
In June 2022, we shared information about the ongoing NDSW/NDSX malware campaign which has been one of the most common website infections detected and cleaned…
The Importance of Website & Server Logs
Krasimir Konov Have you ever looked at your server or website logs and realized that they make absolutely no sense to you? Or thought that logs just…