Fixing Website Hosting Issues: “This Account Has Been Suspended”
Rianna MacLeod Experiencing a “This account has been suspended” warning on your website can be both confusing and alarming. This message means that your hosting provider has…
How to Fix Google Ads Disapproved Due to Malicious or Unwanted Software
Were your Google Ads just disapproved after a website compromise? Or, are you seeing policy violations for malicious or unwanted software in your Google Ads…
SSH 0-day exploit rumors
David Dede People are going crazy with the SSH 0-day exploit rumors. Some are even considering to switch back to telnet because of that. Finally, an official…
WordPress Vulnerability & Patch Roundup August 2023
Cesar Anjos Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…
How to Stop a DDoS Attack in 5 Steps
Victor Santoyo As a website administrator, keeping your site online during large traffic spikes is what you strive for. But how can you be sure traffic spikes…
WordPress Vulnerability & Patch Roundup December 2023
Sucuri Malware Research Team Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…
New Guide: Broken Access Control
The complexity of modern websites exposes countless potential vulnerabilities to lurking attackers. One of the most underestimated threats? Broken Access Control (BAC). The risk lies…
MageCart WordPress Plugin Injects Malicious User & Credit Card Skimmer
Ben Martin One of our analysts recently found an interesting malicious plugin injected into a WordPress / WooCommerce ecommerce website which both creates and conceals a bogus…
What is a Content Security Policy (CSP)
Gerson Ruiz It’s always a good idea to be aware of the security issues that might affect your site. For example, cross-site scripting (XSS) attacks consist of…
Analysis of the Fake WordPress CVE-2023-46182 Patch Plugin & Phishing Campaign
Denis Sinegubko On December 1, 2023, several security researchers reported about a new phishing campaign targeting WordPress administrators. WordPress sites owners had started receiving emails from WordPress.com…
Critical RCE Vulnerability Patched in Backup Migration Plugin
On December 6th, 2023, the WordPress plugin Backup Migration received a critical security patch for a remote code execution vulnerability. Details were released five days…