• Skip to primary navigation
  • Skip to content
  • Skip to primary sidebar
  • Skip to footer

Sucuri Blog

Website Security News

  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Enterprise Website Security
    • Multisite Solutions
  • Features
    • Detection
    • Protection
    • Performance
    • Response
    • Backups
  • Partners
    • Agency Solutions
    • Partners
    • Referral Program
    • Ecommerce
  • Resources
    • Guides
    • Webinars
    • Infographics
    • SiteCheck
    • Reports
    • Email Courses
  • Immediate Help
  • Login
Backdoor Targets FreePBX Asterisk Management Portal

December 15, 2022Krasimir Konov

Backdoor Targets FreePBX Asterisk Management Portal 

Written in PHP and JavaScript, FreePBX is a web-based open-source GUI that manages Asterisk, a voice over IP and telephony server. This open-source software allows users to build customer phone systems. During a recent investigation, I came across a simple piece of malware targeting FreePBX’s…

Read More about Backdoor Targets FreePBX Asterisk Management Portal 

December 13, 2022Rianna MacLeod

Input Validation for Website Security

Web forms are incredibly useful tools. They allow you to gather important information about potential clients and site visitors, collect comments and feedback, upload files, subscribe new users to your…

Read More about Input Validation for Website Security

How to Securely Shop With Your Credit Card: Use a Virtual Card & Check for Skimmers

December 8, 2022Krasimir Konov

How to Securely Shop With Your Credit Card: Use a Virtual Card & Check for Skimmers

The convenience and ease of online transactions has drawn a tremendous number of users to online ecommerce storefronts. And during the pandemic, many consumers switched to online purchases in favor…

Read More about How to Securely Shop With Your Credit Card: Use a Virtual Card & Check for Skimmers

Infected Plugins Redirect to Push Notification Scam

December 6, 2022Eli Trevino

How to Fix & Remove the “Click Allow If You Are Not a Robot” Redirect

Attackers are always finding unique ways to avoid detection. Our teams regularly find malware on compromised websites which have been obfuscated to make it more difficult for webmasters to detect…

Read More about How to Fix & Remove the “Click Allow If You Are Not a Robot” Redirect

Chinese Gambling Spam Leverages World Cup Keywords

December 2, 2022Denis Sinegubko

Chinese Gambling Spam Targets World Cup Keywords

Since 2018, our team has been tracking an interesting type of website infection where the <title> tag of a hacked website is changed to Chinese text — changes which are…

Read More about Chinese Gambling Spam Targets World Cup Keywords

WordPress Vulnerability and Patch Roundup November 2022

November 29, 2022Cesar Anjos

WordPress Vulnerability & Patch Roundup November 2022

Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes of website compromises. To help…

Read More about WordPress Vulnerability & Patch Roundup November 2022

New Wave of SocGholish cid=27x Injections

November 23, 2022Denis Sinegubko

New Wave of SocGholish cid=27x Injections

On November 15th, Ben Martin reported a new type of WordPress infection resulting in the injection of SocGholish scripts into web pages. The attack loads zipped malicious templates from WordPress…

Read More about New Wave of SocGholish cid=27x Injections

WP-CLI: How to Install WordPress via SSH

November 22, 2022Rianna MacLeod

WP-CLI: How to Install WordPress via SSH

Sure, there are tons of one-click installers floating around for WordPress. But they’re not always the most secure option — and can still be tedious to use, especially if you…

Read More about WP-CLI: How to Install WordPress via SSH

How to fix the This SIte May Harm Your Computer website warning

November 17, 2022Rianna MacLeod

How to Fix the “This Site May Harm Your Computer” Warning

Most modern web browsers and search authorities like Google have a vested interest in protecting their users from malware. Warning messages like “This site may harm your computer” are a…

Read More about How to Fix the “This Site May Harm Your Computer” Warning

New SocGholish Malware Variant Uses Zip Compression & Evasive Techniques

November 15, 2022Ben Martin

New SocGholish Malware Variant Uses Zip Compression & Evasive Techniques

Readers of this blog should already be familiar with SocGholish: a widespread, years-long malware campaign aimed at pushing fake browser updates to unsuspecting web users. Once installed, fake browser updates…

Read More about New SocGholish Malware Variant Uses Zip Compression & Evasive Techniques

Top 12 Website Hardening Tips

November 10, 2022Rianna MacLeod

Top 12 Website Hardening Tips

Attackers are always on the hunt for vulnerable websites. Whether you have a WordPress, Magento, or Joomla website — you’ll want to take steps to keep your site and server…

Read More about Top 12 Website Hardening Tips

Primary Sidebar

Socialize With Sucuri

We're actively engaged across multiple platforms. Follow us and let's connect!

  • Facebook
  • Twitter
  • LinkedIn
  • YouTube
  • Instagram
  • RSS Feed

Join Over 20,000 Subscribers!

Sucuri Sidebar Malware Removal to Signup Page

Footer

Products

  • Website Firewall
  • Website AntiVirus
  • Website Backups
  • WordPress Security
  • Enterprise Services

Solutions

  • DDos Protection
  • Malware Detection
  • Malware Removal
  • Malware Prevention
  • Blacklist Removal

Support

  • Blog
  • Knowledge Base
  • SiteCheck
  • Research Labs
  • FAQ

Company

  • About
  • Media
  • Events
  • Employment
  • Contact
  • Testimonials
  • Facebook
  • Twitter
  • LinkedIn
  • Instagram

Customer Login

Sucuri Home

  • Terms of Use
  • Privacy Policy
  • Frequently Asked Questions

© 2023 Sucuri Inc. All rights reserved

Sucuri Cookie Policy
See our policy>>

Our website uses cookies, which help us to improve our site and enables us to deliver the best possible service and customer experience.