Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
  • Immediate Help
Login
Login

New Customer?

Sign up now.
  • Submit a ticket
  • Knowledge base
  • Chat now
Server Side Data Exfiltration via Telegram API
  • Website Malware Infections
  • Website Security
  • WordPress Security

Server Side Data Exfiltration via Telegram API

  • Cesar Anjos
  • March 18, 2021
One of the themes commonly highlighted on this blog includes the many creative methods and techniques attackers employ to steal data from compromised websites. Credit…
Read the Post
Magento 2 PHP Skimmer Saves To Image File
  • Ecommerce Security
  • Magento Security
  • Website Malware Infections
  • Website Security

Magento 2 PHP Credit Card Skimmer Saves to JPG

  • Luke Leal
  • March 10, 2021
Bad actors often leverage creative techniques to conceal malicious behaviour and harvest sensitive information from ecommerce websites. A recent investigation for a compromised Magento 2…
Read the Post
Trojan Spyware and BEC Attacks
  • Security Education
  • Sucuri Labs
  • Website Security

Trojan Spyware and BEC Attacks

  • Luke Leal
  • March 3, 2021
When it comes to an organization’s security, business email compromise (BEC) attacks are a big problem. One primary reason impacts are so significant is that…
Read the Post
Backdoor SQL Trigger
  • Sucuri Labs
  • Website Security
  • WordPress Security

SQL Triggers in Website Backdoors

  • Luke Leal
  • February 25, 2021
Over the past year, there’s been an increasing trend of WordPress malware using SQL triggers to hide malicious SQL queries within hacked databases. These queries…
Read the Post
  • Security Advisory
  • Security Education
  • Website Security

UCEPROTECT Scam: When RBLs Go Bad

  • Marc Kranat
  • February 12, 2021
What is a Realtime Blackhole List (RBL)? A Realtime Blackhole List (RBL) contains lists of email servers, domain names, and IP addresses that are associated…
Read the Post
Server Side Data Exfiltration via Telegram API
  • Security Education
  • Sucuri
  • Website Security
  • WordPress Security

Optimizing Performance and Behavior with WordPress and the Sucuri WAF

  • Marc Kranat
  • February 9, 2021
Aside from providing significant protection from a wide range of threats, the Sucuri WAF also acts as a CDN due to its caching capabilities and…
Read the Post
Backdoors in Malicious Plugins
  • Security Education
  • Sucuri Labs
  • Website Malware Infections
  • Website Security

Whitespace Steganography Conceals Web Shell in PHP Malware

  • Denis Sinegubko
  • February 2, 2021
Last November, we wrote about how attackers are using JavaScript injections to load malicious code from legitimate CSS files. At first glance, these injections didn’t…
Read the Post
Phishing Campaign
  • Security Education
  • Sucuri Labs
  • Website Malware Infections
  • Website Security

Phishing & Malspam with Leaf PHPMailer

  • Luke Leal
  • January 26, 2021
It’s common knowledge that attackers often use email as a delivery mechanism for their malicious activity — which can range from enticing victims to click…
Read the Post
Labs Note
  • Ecommerce Security
  • Sucuri
  • Sucuri Labs
  • Website Security

Magento PHP Injection Loads JavaScript Skimmer

  • Luke Leal
  • January 21, 2021
A Magento website owner was concerned about malware and reached out to our team for assistance. Upon investigation, we found the website contained a PHP…
Read the Post
WordPress Vulnerability
  • Security Education
  • Sucuri Labs
  • Vulnerability Disclosure
  • Website Security

Critical Vulnerabilities in 123contactform-for-wordpress WordPress Plugin

  • Rodrigo Escobar
  • January 19, 2021
In mass infection scenarios, our Malware Research team often looks for attack vectors to find patterns and other similarities among compromised websites. The identification of…
Read the Post
Phishing Campaign
  • Ecommerce Security
  • Security Education
  • Sucuri Labs
  • Website Malware Infections
  • Website Security

Real-Time Phishing Kit Targets Brazilian Central Bank

  • Luke Leal
  • January 14, 2021
We recently found an interesting phishing kit on a compromised website that has QR code capabilities, along with the ability to control the phishing page…
Read the Post
Search
Sucuri Sidebar Malware Removal to Signup Page
Sucuri Logo

Let’s Connect

Products
Website Firewall Website Security Platform WordPress Security Website Backups Hack Assistance Pricing
Solutions
DDoS Protection Malware Detection Malware Removal Malware Prevention Blacklist Removal SEO Spam Removal
USE CASES
Developers Ecommerce Agency Plans Enterprise Services HTTPS/2 Virtual Patching
Support
Knowledge Base SiteCheck Guides Research Labs Report Abuse Status Report
Company
About Sucuri Contact Blog Referral Partners Testimonials
Terms of Use Privacy Policy Do Not Sell My Personal Information Frequently Asked Questions

© 2025 GoDaddy Mediatemple, Inc., d/b/a Sucuri. All rights reserved.

back to top

'