What Are Cookies & How Do They Work?
Victor Santoyo As much as I’d love to, we’re not here to talk about baked goods. Cookies are commonly used on websites and an essential component of…
WordPress Vulnerability & Patch Roundup December 2022
Rodrigo Escobar Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…
How to Backup a WordPress Site for Free with WP-CLI
Rianna MacLeod Regular website backups are the foundation of a solid website security plan. In the event of data loss or malware infection, restoring a WordPress backup…
Fake jQuery Domain Redirects Site Visitors to Scam Pages
Kayleigh Martin A recent infection has been making its rounds across vulnerable WordPress sites, detected on over 160 websites so far at the time of writing. The…
Backdoor Targets FreePBX Asterisk Management Portal
Krasimir Konov Written in PHP and JavaScript, FreePBX is a web-based open-source GUI that manages Asterisk, a voice over IP and telephony server. This open-source software allows…
How to Securely Shop With Your Credit Card: Use a Virtual Card & Check for Skimmers
The convenience and ease of online transactions has drawn a tremendous number of users to online ecommerce storefronts. And during the pandemic, many consumers switched…
How to Fix & Remove the “Click Allow If You Are Not a Robot” Redirect
Eli Trevino Attackers are always finding unique ways to avoid detection. Our teams regularly find malware on compromised websites which have been obfuscated to make it more…
Chinese Gambling Spam Targets World Cup Keywords
Denis Sinegubko Since 2018, our team has been tracking an interesting type of website infection where the <title> tag of a hacked website is changed to Chinese…
WordPress Vulnerability & Patch Roundup November 2022
Cesar Anjos Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…
New Wave of SocGholish cid=27x Injections
On November 15th, Ben Martin reported a new type of WordPress infection resulting in the injection of SocGholish scripts into web pages. The attack loads…
WP-CLI: How to Install WordPress via SSH
Sure, there are tons of one-click installers floating around for WordPress. But they’re not always the most secure option — and can still be tedious…