Secondtds.mooo[.]com .htaccess redirects
Krasimir Konov We are finding many sites infected with malicious redirects inside the .htaccess file, to secondtds.mooo[.]com/go.php?sid=3. That domain is a TDS (traffic controller) which redirects visitors…
GCCanada.com Malware
Daniel Cid We are seeing a large amount of sites with a malscript from gccanada.com injected into them. The malware redirects visitors to searchmagnified.com, which redirects them…
Tag-cloud-generator com script redirects to parked domains
Denis Sinegubko Today we found a few websites that loaded strange code from tag-cloud-generator[.]com. Sites tried load several image and font files from this site, but they…
Fake Social Share WordPress Plugin Creates Pharma Spam Doorways
We found infected sites where malware created a fake WordPress plugin that generated pharma spam doorways. Path: wp-content/plugins/social-share/wp-social-share.php This file creates wp-content/plugins/social-share/share.php that calls itself…
FunWebProducts UserAgent Bloating Traffic
Alycia Mitchell Every once in a while we get a case that makes us dig deep to find answers. We have spoken before about the trouble with…
Wigo Means Bingo for Blackseo Agent
This week my colleague Peter Gramantik showed me a few infected sites that had very similar code embedded in the WordPress index.php files: if (eregi(‘-dbst’,$_SERVER[‘REQUEST_URI’]))…
Persistent XSS Vulnerability in WordPress Explained
Marc-Alexandre Montpas Last week the WordPress team released a patch that fixed 6 security vulnerabilities. Of the six, you’ll find one that we identified a few months…
Ask Sucuri: How Did My WordPress Website Get Hacked? – A Tutorial
With the proliferation of Infrastructure and Platform as a Service providers, it is no surprise that a majority of today’s websites are hosting in the…
WP-CLI Guide: Install WordPress via SSH
This is our fourth post on using WP-CLI to manage WordPress securely over SSH. In our first post we showed you how to connect to…
BIND9 – Denial of Service Exploit in the Wild
BIND is one of the most popular DNS servers in the world. It comes bundled with almost every cPanel, VPS and dedicated server installation and…
Prestige Conference Means Business
Michael Dickens II A great career in business could be likened to a well penned novel. It will be wrought with twists, sharp turns and will feature dull…