Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
  • Immediate Help
Login
Login

New Customer?

Sign up now.
  • Submit a ticket
  • Knowledge base
  • Chat now
Labs Note
  • Sucuri Labs
  • Website Malware Infections
  • Website Security
  • WordPress Security

WordPress Admin Login Stealer

  • Krasimir Konov
  • April 27, 2020
During an investigation, we identified a WordPress login stealer using the PHP functions curl and file_get_contents. The malicious code was injected into the core file…
Read the Post
Duplicated WordPress Vulnerabilities
  • Website Security
  • WordPress Security

Duplicated Vulnerabilities in WordPress Plugins

  • Antony Garand
  • April 24, 2020
During a recent plugin audit, we noticed a weird pattern among many plugins responsible for performing a specific task: Duplicating a page or a post.…
Read the Post
Labs Note
  • Ecommerce Security
  • Magento Security
  • Sucuri Labs

Web Skimmer With a Domain Name Generator – Follow Up

  • Denis Sinegubko
  • April 23, 2020
This note is a follow up to our recent post about a web skimmer that uses a dynamic domain name generating algorithm. This week, analyst…
Read the Post
PinnacleCart Server-Side Skimmer & Backdoor
  • Ecommerce Security
  • Website Malware Infections

PinnacleCart Server-Side Skimmers and Backdoors

  • Denis Sinegubko
  • April 22, 2020
While open-source ecommerce platforms are the most common targets for web skimmers, hackers also target paid-for software — especially if it’s used on high-profile online…
Read the Post
Labs Note
  • Sucuri Labs
  • Website Malware Infections
  • Website Security
  • WordPress Security

Fake M-Shield WordPress Plugin

  • Krasimir Konov
  • April 21, 2020
During a recent malware investigation, we found a fake WordPress plugin called M-Shield. We also found almost an identical plugin under the name kingof, with…
Read the Post
WordPress Redirect Hack via Test0.com/Default7.com
  • Website Malware Infections
  • Website Security
  • WordPress Security

Obfuscated WordPress Malware Dropper

  • Luke Leal
  • April 21, 2020
It goes without saying that evasive maneuvering is at the top of a hacker’s priority list. Most often, they try to evade detection by obfuscating…
Read the Post
Labs Note
  • Magento Security
  • Sucuri Labs
  • Website Malware Infections

Magento JavaScript Skimmer Targets Tarjetas de Crédito

  • Luke Leal
  • April 17, 2020
A website owner recently contacted us regarding a payment problem on their Magento website. A suspicious payment card form was loading for customers who were…
Read the Post
Anatomy of a credit card stealer
  • Magento Security
  • Website Malware Infections
  • Website Security

Web Skimmer with a Domain Name Generator

  • Denis Sinegubko
  • April 17, 2020
Our security analyst Moe Obaid recently found yet another variation of a web skimmer script injected into a Magento database. The malicious script loads the…
Read the Post
  • Vulnerability Disclosure
  • Website Malware Infections
  • Website Security
  • WordPress Security

OneTone Vulnerability Leads to JavaScript Cookie Hijacking

  • Luke Leal
  • April 15, 2020
A vulnerability in the discontinued WordPress theme OneTone has been added to an ongoing campaign that is targeting vulnerable WordPress websites and causes malicious redirects…
Read the Post
What is online gambling spam and what can I do about it?
  • Security Education
  • Website Malware Infections
  • Website Security

What is online gambling spam and what can I do about it?

  • Art Martori
  • April 13, 2020
When it comes to online gambling spam, first think about fantasies of fame and fortune. Who hasn’t imagined defying the odds at an exotic casino?…
Read the Post
WordPress Continues to Fall Victim to Carding Attacks
  • Ecommerce Security
  • Website Security
  • WordPress Security

Analysis of a WordPress Credit Card Swiper

  • Ben Martin
  • April 9, 2020
While working on a recent case, I found something on a WordPress website that is not as common as on Magento environments: A credit card…
Read the Post
Search
Sucuri Sidebar Malware Removal to Signup Page
Sucuri Logo

Let’s Connect

Products
Website Firewall Website Security Platform WordPress Security Website Backups Hack Assistance Pricing
Solutions
DDoS Protection Malware Detection Malware Removal Malware Prevention Blacklist Removal SEO Spam Removal
USE CASES
Developers Ecommerce Agency Plans Enterprise Services HTTPS/2 Virtual Patching
Support
Knowledge Base SiteCheck Guides Research Labs Report Abuse Status Report
Company
About Sucuri Contact Blog Referral Partners Testimonials
Terms of Use Privacy Policy Do Not Sell My Personal Information Frequently Asked Questions

© 2025 GoDaddy Mediatemple, Inc., d/b/a Sucuri. All rights reserved.

back to top

'