WordPress Plugin: Easy Digital Downloads – Security Flaw Discovered and Patchedd
Dre Armeda Last night we were contacted by Adam Pickering about a security flaw discovered in Easy Digital Downloads (EDD), a free WordPress eCommerce plugin that allows…
Large scale TDS redirections
Daniel Cid Lots of compromised sites redirecting to TDS: http://1151.website.snafu.de/hkkj.html?h=1475928 http://adaptpro.co.uk/mwhi.html?h=1380448 http://aennekens.de/hozs.html?h=1180315 http://afamontserrat.org/zapn.html?h=877095 http://afhwarranty.us/wmcs.html?h=1235327 http://aklmn.com/mzos.html?h=1216229 http://alghuraba.co.uk/owes.html?h=1364764 http://app.2need.net/hwed.html?h=617164 http://appprices.com/heos.html?h=1168480 http://arlington9to5.com/mccf.html?h=423540 http://ashneh.in/zopn.html?h=841597 http://babylonproduction.com/wmcf.html?h=557620 http://badmintonscreensaver.com/ehai.html?h=1333181 http://bcitec.com/amms.html?h=1232317 http://belve.fr/wzai.html?h=1244948 http://belve.fr/wzpn.html?h=847683 http://bestofbec.com/hkgb.html?h=1507945 http://bestofbec.com/hmgn.html?h=809281…
Various Shades of Malware – Abusing Your Resources
Tony Perez We often write about very clear cut cases of malware activity. The attacker is leveraging your traffic, redirecting it to other locations, or injecting things…
Malware Redirection with a Delay
You visit a site and it looks good and clean. However, if you keep the page open, after maybe 20-30 seconds, you get redirected to…
Web Server Compromise – Debian Distro – Identify and Remove Corrupt Apache Modules
Came across another server compromise this week. Client was complaining that the following kept being injected into their JavaScript files: document.write("<style.vb4brk { position:absolute; left:-1655px; top:-1476px} </style> <div…
Server Compromises – Attackers Covering Their Tracks
When you’re remediating servers, one of the things you’re always looking for are any traces that show the attacker is trying to cover their tracks.…
Dre Armeda Presenting on WordPress Security at WordCamp Phoenix 2013
Here is the video for the WordPress Security presentation at WordCamp Phoenix 2013: Here is the slide deck from the presentation: Leave us your comments…
Twitter Suffers Compromise – Enterprise Attacks Continue
Looks like Twitter is the latest to get bit in the butt. They just put out the following on their blog: This week, we detected…
Web Server Attacks – Apache Modules, Log Management and RELM
New year, same tricks, mostly because they work. That’s how we’re kicking off the new year folks. In September of 2012, Dennis, of Unmask Parasites,…
WordPress Security: 5 Steps To Reduce Your Risk
Update 11/3/2017: Check out our latest WordPress Security Guide for best practices to keep your website protected and learn about vulnerabilities. Often you hear the…
WordPress 3.5.1 Released
The WordPress team just pushed out a new version of WordPress (3.5.1) that has some security bugs fixed. Straight from their release post, these are…