Lightbox Adware – From Innocent Scripts to Malicious Redirects
Cesar Anjos It’s no news that webmasters commonly make use of external scripts to add more features to their site, but things can turn out for the…
Browsing Category
Website Security
1031 posts
Why Do Hackers Hack? – 3 Reasons Explained
Pilar Garcia When considering why hackers are attacking websites, you might think that there’s a specific reason they target you as a website owner—your business, your reputation,…
Stored XSS in MyBB <= 1.8.20
Marc-Alexandre Montpas The open source PHP forum software myBB recently published a new update, version 1.8.21. This is a security release fixing a Stored XSS vulnerability in…
FTP Logs Used to Determine Attack Vector
Krasimir Konov Logs can be very useful because they are a record of what was done by whom. They are especially useful when you need to find…
Korean Gambling and Call Girl Spam on Hacked and Non-hacked Sites
Denis Sinegubko This blog post talks about how a web spam campaign that targets only one country may create problems for sites owners around the world —…
Closed Source E-commerce Platforms Can Be Compromised
These days, the majority of store owners opt-in for the easiest closed-source ecommerce platform options. For the most part, these platforms typically allow users to…
WordPress Hacks: 5 Ways to Protect WordPress from Hacking
Dutch Hill WordPress is one of the most popular content management systems (CMS) out there. That’s why it is vital to prevent WordPress hacking. Statistically, over 33%…
Malware-Serving Spam to Search Engine Bots
We recently discovered this malware with a list of IP ranges belonging to search engines that are serving them SEO spam. It even takes a…
PHP Backdoor Evaluates XOR Encrypted Requests
Luke Leal In the past, we’ve mentioned how the PHP XOR bitwise operator (represented by the caret ^) can be used to encrypt a malware’s source code.…
Return to the City of Cron – Malware Infections on Joomla and WordPress
We recently had a client that had a persistent malware infection on their shared hosting environment that would re-infect the files quickly after we had…
.htaccess Injector on Joomla and WordPress Websites
Eugene Wozniak During the process of investigating one of our incident response cases, we found an .htaccess code injection. It had been widely spread on the website,…