Website Security Archives

Massive WordPress Redirect Campaign Targets Vulnerable tagDiv Themes and Ultimate Member Plugins

Denis Sinegubko

August 22, 2018

This August, we’ve seen a new massive wave of WordPress infections that redirect visitors to unwanted sites. When redirected, users see annoying pages with random…

Read the Post

How to Improve Your Website Security Posture – Part I

AJ Syed Ali

August 14, 2018

Have you ever wondered if your website security posture is adequate enough? The risk of having a website compromise is never going to be zero.…

Read the Post

How to Improve Website Resilience for DDoS Attacks – Part II – Caching

Northon Torga

August 9, 2018

In the first post of this series, we talked about the practices that will optimize your site and increase your website’s resilience to DDoS attacks.…

Read the Post

Fake Cloudflare Injection

Fioravante Souza

August 8, 2018

Seeing malicious campaigns using domain names that resemble big market players is not news anymore. This time I\’ll talk about the new redirects of cloudflare.pw.****…

Read the Post

Cookie Consent Script Used to Distribute Malware

Krasimir Konov

August 7, 2018

Most websites today use cookies. Since May 25th, 2018, all websites that do business in the European Union (EU) had to make some changes to…

Read the Post

Website Security

Cryptominers: Binary-Process-Cron Variants and Methods of Removal

Tyler Lancy

August 2, 2018

This post provides a brief overview of how to manually remove server-side cryptominers and other types of Binary-Process-Cron malware from a server. Unlike browser-based JavaScript…

Read the Post

Obfuscated JavaScript Crypto Miner

Samuel Odendaal

August 1, 2018

During an incident response investigation, we detected an interesting piece of heavily obfuscated JavaScript malware. Once decoded, Crypto Miners were ran on customers visiting the…

Read the Post

RawGit CDN is Abused by CryptoLoot Cryptominers

Denis Sinegubko

July 31, 2018

Recently, we came across another way to use files from GitHub repositories in malware infections. This time the infections weren’t via GitHub.io, raw.githubusercontent.com, or github.com/<user>/<repository>/raw/…

Read the Post

Switching to HTTPS Before It’s Too Late

Krasimir Konov

July 26, 2018

Google, Mozilla, and other web authorities are pushing for website owners to adopt HTTPS. Soon, Google Chrome will start flagging sites by displaying a warning that…

Read the Post

How Some OTP Systems Can Be Used to Prank Spam

Luke Leal

July 25, 2018

I recently came across an interesting index.php file and its corresponding directory on a compromised website. I loaded it in a testing environment and immediately…

Read the Post