Abandoned US Congressional Website Used in Asian Gambling Spam Infection
Ben Martin Website owners and developers tend to buy a lot of domains. With different projects on the go and working with multiple different clients at any…
Browsing Category
Website Security
1009 posts
How to Scan a Website for Vulnerabilities
Rianna MacLeod Even the most diligent site owners should consider when they had their last website security check. As our own research indicates, infections resulting from known…
How to Recognize & Avoid Phishing Emails: A Cautionary Tale
Matt Morrow We’ve all received spam and phishing emails — our inboxes are often full of them. They let us know that our package is being delivered…
Massive Google Colaboratory Abuse: Gambling and Subscription Scam
Denis Sinegubko This investigation started with a small and quite simple piece of PHP malware found on a hacked website. We located the following PHP code, responsible…
Malicious Injection Redirects Traffic via Parked Domain
Puja Srivastava During a recent investigation, our malware remediation team encountered a variant of a common malware injection that has been active since at least 2017. The…
What is php.ini? Where It’s Located, How to Edit & Common Directives
The php.ini file, a critical configuration file containing your web server’s PHP settings, is integral to the functioning of your website. Each time PHP initiates,…
New Guide on Secure VPS Configuration
One of the most common problems that we observe among many of our clients is the persistent threat of cross contamination – that is, malware…
How to Harden WordPress With WP-Config & Avoid Data Exposure
Luke Leal What is wp-config.php? The wp-config.php file is a powerful core WordPress file that is vital for running your website. It contains important configuration settings for…
Spamdexing: What is SEO Spam & How to Remove It
Ever had an uninvited guest crash your party, resulting in chaos, confusion, and some unhappy visitors? Well, SEO spam is that party crasher — just…
Remote Code Execution Backdoor Uses Unicode Obfuscation & Non-Standard File Extensions
Readers of this blog will know that attackers are constantly finding new ways to hide their malware and avoid detection; after all, that’s what good…
Website Hacktools: Types, Threats & Detection
When we think about website malware, visible infection symptoms most often come to mind: unwanted ads or pop-ups, redirects to third party sites, or spam…