Ransomware Strikes Websites
Ben Martin Ransomware is one of the most insidious types of malware that one can come across. These infections will encrypt all files on the target computer…
Obfuscating display:none cloaking
Denis Sinegubko We’ve seen lots of JavaScript tricks that hide injected spam from human visitors while making it look “visible” for search engines. The most popular approach…
Speeding up indexing of SPAM files via sitemap.xml
Yuliyan Tsvetkov Remember the wave of HTML files infection back in 2015 affecting outdated WordPress sites? Now it came back more powerful, with more files uploaded via…
Malicious Pastebin Replacement for jQuery
Website hackers are always changing tactics and borrowing ideas from each other. One of the challenges of website security is staying on top of those…
Fake AdWords Domain Advertises USA Immigration Service
You might know Google popular services: Google Ads, AdSense and DoubleClick. You might even know scripts and domains they use. For example, DoubleClick loads scripts…
Hiding spam from Ahrefs and Majestic
Many black hat SEO campaigns use cloaking on hacked sites. Malicious scripts only inject spammy content when search engine crawlers request web pages on compromised…
Fake Media Download Sites
Your website is a huge part of your brand reputation. It serves as a place to build your audience and helps you get noticed by…
Pseudo-Darkleech in Drupal
It’s just a minor update about the “pseudo-darkleech” malware we’ve been following for about a year now. We wrote that it can be usually located…
Using WPScan: Finding WordPress Vulnerabilities
Alycia Mitchell When using WPScan you can scan your WordPress website for known vulnerabilities within the core version, plugins, and themes. You can also find out if…
File Modification Date – not the Best Compromise Signal
Some webmasters only check recently modified files when searching for malware. It may work sometimes, but many infections don’t change files’ time-stamps. There is the…
Vulnerability Details: Joomla! Remote Code Execution
Marc-Alexandre Montpas The Joomla! team released a new version of Joomla! CMS yesterday to patch a serious and easy to exploit remote code execution vulnerability that affected…