Down the Malware Rabbit Hole: Part II
Cesar Anjos In our last post in this series, we took a look at a code snippet that had been encoded in a very specific way —…
Mixed Content Warnings in Google Chrome
Peter Kankowski Migrating your website to HTTPS may seem like a simple task. Get the TLS/SSL certificate, install it on your web server, and you’re done. The…
Malicious Android Application Used in Phishing Scam
Krasimir Konov While we deal with a lot of phishing cases, we rarely see mobile applications used as part of a phishing campaign—these apps add a layer…
Why Reinfections Happen with a WAF
Luke Leal A web application firewall (WAF) is a great way to detect and filter incoming malicious requests before they can exploit website vulnerabilities and security flaws.…
Vulnerable Versions of Adminer as a Universal Infection Vector
Denis Sinegubko This past week, we’ve been monitoring a new wave of website infections mostly impacting WordPress and Magento websites. We found that hackers have been injecting…
Skimmers for Both Magento and WordPress
We often write about malware that steal payment information from sites built with Magento and other types of e-commerce CMS. When discussing credit card skimmers…
Plugins added to Malware Campaign: October 2019
John Castro This is an update for the long-lasting malware campaign targeting vulnerable plugins during August and September. Please check our previous updates below: Multi-Vector Attack in…
Magento 1 End of Life
Art Martori It’s no secret that a CMS without support will develop vulnerabilities. Eventually, these lead to a compromised website — which cripples any ecommerce business. When…
Size for Opera: Hiding Spammy Links
There are many different tricks hackers use to make injected spam links invisible to regular visitors. Below is an example employed by one link spam…
Pharma Spam Redirects to .su & .eu Sites
We regularly clean all sorts of black hat SEO infections. During these infection cleanups, we often find compromised websites redirecting visitors to fake “Canadian Pharmacy”…
Halloween Tales of the IoT Crypt
Josh Hammer In the spirit of Halloween, we bring you some of the scariest internet of things (IoT) hacks that we have been made aware of. While…