Magbo Spam Injection Encoded with hex2bin
Ben Martin We recently had a new client come to us with a rather peculiar issue on their WordPress website: They were receiving unwanted popup advertisements but…
WordPress Vulnerability & Patch Roundup February 2023
Cesar Anjos Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…
Is My Site Hacked? (13 Signs)
Rianna MacLeod Symptoms of a hack can vary wildly. A concerning security alert from Google, a browser warning when you visit your site, or even a notice…
Attackers Abuse Cron Jobs to Reinfect Websites
Malicious cron jobs are nothing new; we’ve seen attackers use them quite frequently to reinfect websites. However, in recent months we’ve noticed a distinctive new…
The Dangers of Installing Nulled WordPress Themes & Plugins
Nathan Chaddock Nulled WordPress themes and plugins are a controversial topic for many in the web development world — and arguably one of the bigger threats to…
Help! My Email Server Got B0rked & I Have Problems After Malware Infection!
Marc Kranat The Sucuri Firewall functions as a reverse proxy. A simple change to your DNS settings is all it takes to thoroughly filter incoming traffic to…
Bogus URL Shorteners Redirect Thousands of Hacked Sites in AdSense Fraud Campaign
Late last year we reported on a malware campaign targeting thousands of WordPress websites to redirect visitors to bogus Q&A websites. The sites themselves contained…
What is Black Hat SEO?
Your website’s search results and rankings are vital to the success of your online business. Better search visibility equates to more traffic — which results…
Konami Code Backdoor Concealed in Image
Attackers are always looking for new ways to conceal their malware and evade detection, whether it’s through new forms of obfuscation, concatenation, or — in…
WordPress Vulnerability & Patch Roundup January 2023
Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…
Massive Campaign Uses Hacked WordPress Sites as Platform for Black Hat Ad Network
Denis Sinegubko Every so often attackers register a new domain to host their malware. In many cases, these new domains are associated with specific malware campaigns, often…