New iFrame Injections Leverage PNG Image Metadata
Peter Gramantik We’re always trying to stay ahead of the latest trends, and today we caught a very interesting one that we have either been missing, or…
Browsing Category
Website Security
1031 posts
Website Mesh Networks Distributing Malware
Daniel Cid Can you imagine having the keys to a kingdom? How awesome would that be!! This is true in all domains, especialy when it comes to…
Friday the 13th – A Gallery of Webmaster Nightmares
Denis Sinegubko This post is dedicated to all you geeky horror movie fans out there! One morning you open your website and don’t recognize it. Something is…
How We Decoded Some Nasty Multi-Level Encoded Malware
Ante Kresic From time to time, we come up with interesting bits of malware that are just calling us to decode and learn more about them. This…
Stealing Credit Cards – A WordPress and vBulletin Hack
Tony Perez What better way to celebrate Thanksgiving than to share an interesting case that involves two of the most popular CMS applications out there – vBulletin…
Another Fake WordPress Plugin – And Yet Another SPAM Infection!
We clean hundreds and thousands of infected websites, a lot of the cleanups can be considered to be somewhat “routine”. If you follow our blog,…
Case Study: Analyzing a WordPress Attack – Dissecting the webr00t cgi shell – Part I
November 1st started like any other day on the web. Billions of requests were being shot virtually between servers in safe and not so safe…
WordPress 3.6.1 Released – Includes Security Fixes
Dre Armeda The WordPress team just pushed out a new version of WordPress. WordPress 3.6.1 is a maintenance release that includes some security bug fixes. Straight from…
Security Archive – Case Study: phpbb.com Compromised
Security Archive: It is important to remember past security incidents to make sure we don’t commit the same mistakes over and over again. The idea…
Over 10% of Alexa TOP Million Websites Found Not Safe – Infographic Report
We scan a lot of websites per day. Through our daily work we see all sizes and types of websites compromised, blacklisted, and filled with…
Big Increase in Distributed Brute Force Attacks Against Joomla Websites
Update: Brute force protection now available: http://cloudproxy.sucuri.net/brute-force-protection A few months ago, we discussed and published details about a very large brute force attack targeting WordPress…