Fake jQuery Domain Redirects Site Visitors to Scam Pages
Kayleigh Martin A recent infection has been making its rounds across vulnerable WordPress sites, detected on over 160 websites so far at the time of writing. The…
Backdoor Targets FreePBX Asterisk Management Portal
Krasimir Konov Written in PHP and JavaScript, FreePBX is a web-based open-source GUI that manages Asterisk, a voice over IP and telephony server. This open-source software allows…
How to Securely Shop With Your Credit Card: Use a Virtual Card & Check for Skimmers
The convenience and ease of online transactions has drawn a tremendous number of users to online ecommerce storefronts. And during the pandemic, many consumers switched…
How to Fix & Remove the “Click Allow If You Are Not a Robot” Redirect
Eli Trevino Attackers are always finding unique ways to avoid detection. Our teams regularly find malware on compromised websites which have been obfuscated to make it more…
Chinese Gambling Spam Targets World Cup Keywords
Denis Sinegubko Since 2018, our team has been tracking an interesting type of website infection where the <title> tag of a hacked website is changed to Chinese…
WordPress Vulnerability & Patch Roundup November 2022
Cesar Anjos Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…
New Wave of SocGholish cid=27x Injections
On November 15th, Ben Martin reported a new type of WordPress infection resulting in the injection of SocGholish scripts into web pages. The attack loads…
How to Fix the “This Site May Harm Your Computer” Warning
Rianna MacLeod Most modern web browsers and search authorities like Google have a vested interest in protecting their users from malware. Warning messages like “This site may…
![Massive ois[.]is Black Hat Redirect Malware Campaign Targets WordPress Sites](https://blog.sucuri.net/wp-content/uploads/2022/11/BlogPost_Feature-Image_1490x700_PHP-Login-Stealer-390x183.png)
Massive ois[.]is Black Hat Redirect Malware Campaign
Ben Martin Since September 2022, our research team has tracked a surge in WordPress malware redirecting website visitors to fake Q&A sites via ois[.]is. These malicious redirects…
Black Friday & Cyber Monday Ecommerce Security Threats
Consumers spent a whopping $33.9 billion during Cyber Week last year. With the average adult spending $430 on Black Friday alone, this period remains one…
WordPress Vulnerability & Patch Roundup October 2022
Rodrigo Escobar Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…