Weekly malware update – 2010/Jan/31
David Dede Weekly malware update. You can track all updates by following our malware_updates category. *If your site has been affected with any of these issues, contact…
Browsing Category
WordPress Security
672 posts
Malware update: .co.cc malicious entries
For the last weeks (actually months), we’ve been tracking a large number of malware from .co.cc domains. It seems that every .co.cc domain we find…
WordPress 3.0.3 released (security update)
Running WordPress? Time to update it again! Version 3.0.3 has been released fixing some security vulnerabilities. If you can’t upgrade, make sure to disable remote…
WordPress 0 day exploit (version 3.0.1 and older)
We posted last week about the release of WordPress 3.0.2 that fixes a few security vulnerabilities. Today, full details of the vulnerability and exploit code…
WordPress 3.0.2 released (security update)
If you’re using WordPress, make sure and update to the latest version (3.0.2) as soon as possible. Especially if you have multiple authors with access…
Yet Another WordPress Security Post – Part One
Tony Perez At the end of October we had the opportunity to attend WordCamp Las Vegas. WordCamp’s are great events organized in various cities/countries by the WordPress…
More attacks – Hilary Kneber and meqashoppecom – Part II
A few days ago we reported a large scale attack affecting WordPress sites at hosted on 123-reg servers. They were using the domains meqashopperinfo.com and…
Blackhat SEO Spam C&C: wseow and seotoos up to no good!
We have been tracking these Blackhat SEO Spam C&C (command and control) servers for a while and thought it would be a good time to…
Malware update – seconeo.com,secowo.com,etc
We will be posting some quick malware updates on our blog from now on. If your WordPress site got hacked with malware from any of…
Pharma hack and their C&C (Command & control) server
A large portion of the sites Sucuri has been fixing in recent weeks are stemming from infections caused by the infamous Pharma Hack. We posted…
Cleaning the “siteurlpath” hack on WordPress (wplinksforwork and hemoviestube spam bots)
Recently we started to see a lot of WordPress sites hacked with malware hidden inside the wp_options -> siteurlpath table. The symptoms are very similar…